Insurance coverage big Globe Life says an unknown risk actor tried to extort cash in change for not publishing knowledge stolen from the corporate’s techniques earlier this yr.
Based in 1900, Globe Life is among the many largest suppliers of life and medical insurance plans in america, with a market capitalization of $12 billion and a complete income that exceeds $5.3 billion.
International Life beforehand disclosed a data breach on June 13 after discovering that they had been compromised whereas reviewing potential vulnerabilities associated to entry permissions and person id administration for its net portal.
On the time, the corporate warned that the hackers might have accessed client and policyholder knowledge following a profitable breach of one of many net portals.
Though the corporate’s operations weren’t considerably disrupted because of the incident, there was concern about what knowledge may need been stolen, as such a situation may probably affect hundreds of thousands.
In a brand new submitting submitted to the SEC at this time, Globe Life says that not less than 5,000 clients of its subsidiary, American Revenue Life Insurance coverage Firm, are impacted. Nevertheless, this quantity might enhance because the investigation continues.
Globe Life additionally says that the cybercriminals behind the assault tried to extort the corporate into paying a ransom in change for not publishing the stolen knowledge.
The info samples the agency acquired from the risk actor seem like associated to one among its subsidiaries, American Revenue Life Insurance coverage Firm.
“Globe Life Inc. lately acquired communications from an unknown risk actor looking for to extort cash from the Firm in change for not disclosing sure data held and utilized by the Firm and its unbiased brokers,” reads the Thursday morning SEC submitting.
“Based mostly on the Firm’s investigation to this point, which stays ongoing, the Firm believes that data relayed to the Firm by the risk actor might relate to sure clients and buyer leads that may be traced to the Firm’s subsidiary, American Revenue Life Insurance coverage Firm.”
The knowledge stolen by the cybercriminals contains the next knowledge sorts, which range per particular person: full names, e mail addresses, cellphone numbers, postal addresses, Social Safety Numbers, health-related knowledge, and coverage data.
International Life has additionally clarified that the extortion try doesn’t contain ransomware, so there was no knowledge encryption of file locks on the corporate’s techniques.
Concerning the monetary affect of the incident, as of at this time, International Life believes that it’ll not have a fabric affect on its enterprise operations and doesn’t anticipate it to have an effect on its financials.
