Minneapolis-based cybersecurity giant Entrust has confirmed it was hit by a cyberattack last month.
Entrust, which describes itself as a global leader in identities, payments and data protection, told TechCrunch that an “unauthorized party” was able to access parts of its system that are used for the internal operations on June 18.
“We promptly began an investigation with the assistance of a leading third-party cybersecurity firm and have informed law enforcement,” Ken Kadet, vice president of communications at Entrust, said in a statement. “While our investigation is ongoing, we have found no indication to date that the issue has affected the operation or security of our products and services, which are run in separate, air-gapped environments from our internal systems and are fully operational.”
Cybersecurity researcher Dominic Alvieri obtained and published a July 6 notice sent to Entrust customers, which cited Entrust CEO Todd Wilkinson saying that “some files were taken from our internal systems.”
“As we continue to investigate the issue, we will contact you directly if we learn information that we believe would affect the security of the products and services we provide to your organization,” Wilkinson added in its note to customers.
Entrust security incident dated June 18th.
Entrust blog still down on your left and official statement on your right.
Techcrunch eventDisrupt 2026: The tech ecosystem, all in one room
Your next round. Your next hire. Your next breakout opportunity. Find it at TechCrunch Disrupt 2026, where 10,000+ founders, investors, and tech leaders gather for three days of 250+ tactical sessions, powerful introductions, and market-defining innovation. Register now to save up to $400.
Save up to $300 or 30% to TechCrunch Founder Summit
1,000+ founders and investors come together at TechCrunch Founder Summit 2026 for a full day focused on growth, execution, and real-world scaling. Learn from founders and investors who have shaped the industry. Connect with peers navigating similar growth stages. Walk away with tactics you can apply immediately
Offer ends March 13.San Francisco, CA | October 13-15, 2026No one seen taking credit to date.@Entrust_Corp #cybersecurity #infosec @Cyberknow20 @GossiTheDog @campuscodi @vxunderground @FBI pic.twitter.com/m54y0x1CIJ
— Dominic Alvieri (@AlvieriD) July 21, 2022
When asked by TechCrunch, Entrust declined to confirm if data was stolen or say what kind of data was stolen. Entrust also would not say if the intrusion was related to ransomware. It doesn’t appear any ransomware gang has yet claimed responsibility for the attack.
Entrust says on its website that it has more than 10,000 customers, including Microsoft, VMware and a number of U.S. government agencies such as the Department of Homeland Security and the Treasury.
While bruising for any cybersecurity company facing its own data security incident, Entrust is not the first cybersecurity giant to be breached this year. Back in March, authentication giant Okta admitted that 366 corporate customers, or about 2.5% of its customer base, were impacted by a security breach that allowed hackers to access the company’s internal network. And in 2020, cybersecurity insurance giant CNA was hit by ransomware.
