Allianz Life has accomplished the investigation into the cyberattack it suffered in July and decided that almost 1.5 million people are impacted.
The American insurance coverage large is now notifying affected people that their names, addresses, dates of delivery, and social security numbers (SSN) has been compromised.
Allianz Life is a part of Allianz SE and offers annuities and life insurance coverage for greater than 1.4 million People. Allianz SE, which is a worldwide large with over 125 million prospects, was not impacted.
In late July, the American insurance coverage firm knowledgeable the general public that it had suffered a data breach impacting most of its prospects, after a menace actor gained entry to a third-party cloud-based CRM (Buyer Relationship Administration) system they used.
Though not formally confirmed, BleepingComputer has discovered that the assault was possible a part of the Salesforce assault wave performed by the ShinyHunters extortion group.
In an replace three weeks after disclosing the assault, Allianz Life famous that the variety of impacted people was 1.1 million, based mostly on the knowledge the investigation revealed at the moment.
The corporate is now informing affected prospects and shared the data breach notification with U.S. authorities. The full variety of individuals impacted by the cyberattack is 1,497,036 and consists of prospects, monetary professionals, and workers.
“On July 16, 2025, a malicious menace actor gained entry to a cloud-based system utilized by Allianz Life,” reads the discover.
“The menace actor was in a position to acquire sure private info associated to Allianz Life prospects, monetary professionals, and choose Allianz Life workers.”
Though HaveIBeenPwned beforehand reported that the incident resulted within the compromise of e mail addresses, names, genders, dates of delivery, telephone numbers, and bodily addresses, the the insurance coverage firm solely lists names, addresses, dates of delivery, and Social Safety numbers.
Allianz Life enclosed directions on the best way to enroll in a two-year free-of-charge identification theft monitoring service by Kroll, to considerably mitigate the chance for the letter recipients.
The corporate has additionally established a devoted help crew, reachable by telephone, which is able to reply any buyer questions concerning the incident.
Doubtlessly impacted people are suggested to stay vigilant towards unsolicited communications, allow credit score monitoring, and contemplate putting a credit score freeze.
Be part of the Breach and Attack Simulation Summit and expertise the way forward for security validation. Hear from high specialists and see how AI-powered BAS is remodeling breach and assault simulation.
Do not miss the occasion that can form the way forward for your security technique
