Rapid Tidings
Sign in
Log in to your account
Don't have an account? Register
Forgot password?
Continue with Google
06-20-2025, 1:36 PM
By Daniel J.
Business - Tech

Cybercriminals Breach Aflac in Widespread Hack on U.S. Insurance Industry

An Aflac company logo / Video Screenshot

Cybercriminals have breached insurance giant Aflac, potentially stealing Social Security numbers, insurance claims and health information, the company said Friday, the latest in a spree of hacks against the insurance industry.

With billions of dollars in annual revenue and tens of millions of customers, Aflac is the biggest victim yet in the ongoing digital assault on US insurance companies that has the industry on edge and the FBI and private cyber experts scrambling to contain the fallout.

The cyberattack marks the latest in a string of data breaches targeting insurance companies, including attacks earlier this month against Philadelphia Insurance Companies and Erie Insurance.

Aflac said it “stopped the intrusion within hours” after discovering it last week, that no ransomware was deployed, and that it continues to serve its customers.

“This attack, like many insurance companies are currently experiencing, was caused by a sophisticated cybercrime group. This was part of a cybercrime campaign against the insurance industry,” Aflac said in a statement.

Aflac also mentioned information linked to consumer insurance claims and personal data that could have been compromised during the cybercrime.

“We regret that this incident occurred,” Aflac said. “We will be working to keep our stakeholders informed as we learn more and continue investigating the incident.”

The hackers used “social engineering” to worm their way into its network, according to Aflac. That strategy might entail fooling someone into disclosing security data to provide network access.  Scattered Spider attackers, who pass for tech assistance in order to enter large companies, are infamous for this.

“If Scattered Spider is targeting your industry, get help immediately,” said Cynthia Kaiser, who until last month was deputy assistant director of the FBI’s Cyber Division and oversaw FBI teams investigating the hackers. “They can execute their full attacks in hours.  Most other ransomware groups go in days.

Scattered Spider regularly registers web domains that seem rather much like trustworthy help desks that businesses employ for IT support, the cybersecurity firm Halcyon, where Kaiser currently works, writes in an upcoming study.

Add comment

Comments
Related news
07-12-2024, 9:03 PM
Business
AT&T - Video Screenshot
AT&T claims hackers obtained nearly all cellular subscribers' call and text records
11-10-2023, 2:56 PM
World - Asia
The world's largest bank, China's ICBC, has been hacked
05-30-2025, 1:17 PM
Business
Victoria’s Secret / Video Screenshot
Victoria’s Secret website restored following multi-day cyber incident
02-8-2024, 5:09 PM
U.S.
The US State Department is offering $10 million for information on a ransomware gang that has hit US hospitals
03-28-2025, 9:17 PM
U.S.
Dr. Peter Marks / Video Screenshot
Dr. Peter Marks, the FDA's senior vaccine scientist to resigned
01-2-2025, 1:53 PM
U.S. - Crime
Attack on New Orleans' Bourbon Street / Video Screenshot
The driver of the New Orleans terror assault acted alone and was '100 percent inspired by ISIS,' says to the FBI
03-30-2024, 12:49 PM
Business
AT&T says personal data from current and former account holders leaked onto dark web
10-19-2023, 12:56 PM
U.S.
Thousands of distant IT workers remitted pay to North Korea to assist fund weapons program, according to the FBI
10-2-2024, 2:24 PM
Entertainment
Sean 'Diddy' Combs / Video Screenshot
120 more sexual assault lawsuits to be filed against Sean 'Diddy' Combs