Hackers Hit a Major US Insurance Firm Exposing Details of Nearly 1.4M Customers
9 months ago
- #social engineering
- #data breach
- #cybersecurity
- Allianz Life, a U.S.-based insurance company, suffered a data breach affecting 1.4 million customers, financial professionals, and employees.
- The breach involved social engineering tactics, with no evidence of network or system compromise.
- The attack was traced to the ShinyHunters extortion group, known for exploiting cloud and software vulnerabilities.
- ShinyHunters uses impersonation tactics, such as posing as IT support, to gain access to systems like Salesforce data loaders.
- Allianz Life did not confirm if their compromised CRM was Salesforce-based, only stating it was a third-party, cloud-based system.
- Recent large-scale attacks, including one on an airline and a 158-year-old company, highlight the urgent need for stronger security measures.