kelvinsecurity attacks Instance IT Solutions India

Incident Date:

May 3, 2022

World map



kelvinsecurity attacks Instance IT Solutions India


Instance IT Solutions India




Surat, India

Gujarat, India

First Reported

May 3, 2022

Ransomware Attack on Instance IT Solutions India

Instance IT Solutions India, a prominent player in the software development and IT solutions domain, has fallen victim to a ransomware attack orchestrated by the Kelvinsecurity group. This incident was disclosed on the group's dark web leak site, highlighting the ongoing cybersecurity threats faced by the industry. Instance IT Solutions India is renowned for its contributions to digital transformation, SaaS, Cloud Service Platforms, and bespoke software solutions, marking this attack as significant within the software sector.

Company Profile

As an authorized Zoho partner, Instance IT Solutions India provides a comprehensive suite of IT services. Their offerings span website development, mobile app development, and digital marketing, catering to a diverse clientele across various industries. The company has garnered acclaim for its service excellence, underscored by positive client testimonials.

Vulnerabilities and Mitigation

Ransomware attacks leverage weaknesses in software, outdated systems, or subpar security protocols. To counteract these threats, it is imperative for organizations to adopt stringent security measures. Key strategies include:

  • Ensuring timely application of software updates and patches.
  • Enforcing robust password policies coupled with multi-factor authentication.
  • Conducting regular employee training sessions on cybersecurity best practices.
  • Maintaining frequent backups of essential data.
  • Implementing network segmentation and rigorous access control measures.

The breach of Instance IT Solutions India underscores the persistent risk posed by cyber adversaries. It is crucial for entities within the software industry to elevate their cybersecurity posture, safeguarding their infrastructure and data against such incursions.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.