"On June 20, Aflac revealed that it was hit by a cyberattack staged by a sophisticated group as part of a wave of attacks against insurance companies. The firm noted that it became aware of the suspicious activity on June 12. At the time, Aflac said that it would conduct a review of the incident to determine what happened and who was affected. Now that review has been completed, here are the gory details."
"Though Aflac did not identify the culprit, the attack appears to have been staged by Scattered Spider, a notorious ransomware group that has painted a bullseye on the insurance industry. A July report from cybersecurity provider CrowdStrike revealed how the group uses social engineering, SIM swapping, remote access tools, and other tactics to steal data and hold it for ransom. If the money is not paid or the breach is contained, then Scattered Spider threatens to release the data publicly."
A cyberattack on Aflac exposed personal and sensitive data for approximately 22.65 million customers, beneficiaries, employees, agents, and related individuals. Stolen information included names, contact details, claims data, health information, and Social Security numbers, though not every data type was compromised for every affected person. Suspicious activity was detected on June 12 and disclosed on June 20 after Aflac conducted a review. The intrusion appears linked to Scattered Spider, a ransomware group that uses social engineering, SIM swapping, remote access tools, and other tactics to steal data and extort victims. Aflac is offering free credit monitoring and related services.
Read at ZDNET
Unable to calculate read time
Collection
[
|
...
]