Insurance coverage large Allianz subsidiary Allianz Life Insurance coverage Firm of North America is notifying roughly 1.5 million those who their private info was stolen in a July data breach.
The incident occurred on July 16 and concerned a third-party cloud-based buyer relationship administration (CRM) system utilized by Allianz Life, the corporate informed information.killnetswitch in July.
Solely Allianz Life within the US was impacted, the corporate mentioned, including that the majority of its roughly 1.4 million clients had been doubtless affected, with out sharing an actual quantity.
This week, nevertheless, the corporate notified the Maine Lawyer Normal’s Workplace that the breach impacts the info of 1,497,036 “Allianz Life clients, monetary professionals, and choose Allianz Life workers”.
The stolen private info contains names, addresses, dates of beginning, and Social Safety numbers, the insurer notes within the notification letter despatched to the affected individuals.
Allianz Life is offering the affected people with two years of free identification theft restoration and credit score monitoring companies.
The corporate additionally mentioned it has contained and mitigated the problem, and that the incident was restricted to the third-party CRM, as none of its programs had been accessed.
Whereas Allianz Life didn’t share particulars on the compromised CRM, the assault was attributed to the notorious Scattered Spider cybercrime group, which performed a large-scale marketing campaign focusing on the Salesforce situations of main firms.
Adidas, Cisco, Dior, Louis Vuitton, Google, Air France/KLM, and Workday are additionally believed to have been focused within the marketing campaign.
Scattered Spider and its current partner-in-crime ShinyHunters, a hacking group specializing in extortion, introduced in mid-September their retirement, however cybersecurity specialists stay skeptical of their disappearance from the risk panorama.
