Prudential Monetary has disclosed that its community was breached final week, with the attackers stealing worker and contractor knowledge earlier than being blocked from compromised methods at some point later.
This main international monetary providers Fortune 500 firm manages roughly $1.4 trillion in belongings, and it offers insurance coverage, retirement planning, in addition to wealth and funding administration providers to over 50 million clients throughout the US, Asia, Europe, and Latin America.
Because the second-largest life insurance coverage firm within the U.S., it employs 40,000 folks worldwide and reported revenues of greater than $50 billion in 2023.
In an 8-Ok type filed with the U.S. Securities and Change Fee earlier in the present day, the corporate revealed that it detected the breach on February 5 after the attackers gained entry to a few of its methods at some point earlier, on February 4.
“As of the date of this Report, we imagine that the risk actor, who we suspect to be a cybercrime group, accessed Firm administrative and consumer knowledge from sure data know-how methods and a small share of Firm consumer accounts related to staff and contractors,” Prudential mentioned.
Prudential has reported the security breach to legislation enforcement companies and notified all related regulatory authorities of the data breach.
An ongoing investigation is assessing the total scope and influence of the incident, together with potential entry to different data or methods on the insurer’s community.
Nevertheless, in the meanwhile, the corporate has but to search out any indication that the malicious actors have obtained buyer or shopper knowledge.
“As of the date of this Report, the incident has not had a fabric influence on the Firm’s operations, and the Firm has not decided the incident within reason more likely to materially influence the Firm’s monetary situation or outcomes of operations,” the corporate mentioned.
The private data of over 320,000 Prudential clients whose knowledge had been dealt with by third-party vendor Pension Profit Info (PBI) was uncovered in Might 2023 after the Clop cybercrime gang breached PBI’s MOVEit Switch file sharing platform.
“Our investigation decided that the next forms of data associated to you had been current within the server on the time of the occasion: title, deal with, date of start, telephone quantity, and Social Safety quantity,” PBI mentioned on the time.
A Prudential Monetary spokesperson was not instantly out there for remark when contacted by BleepingComputer earlier in the present day.
