Particle.news

Download on the App Store

Aflac Cyberattack Exposes Customer Data, Investigation Ongoing

Using social engineering tactics, attackers accessed Social Security numbers and medical records in a network breach under ongoing assessment by Aflac

Overview

  • Aflac detected unauthorized access on June 12 and contained the intrusion within hours without any ransomware deployment.
  • The company attributes the breach to a sophisticated cybercrime group linked to Scattered Spider in a broader campaign against U.S. insurers.
  • Potentially compromised files include customer claims details, Social Security numbers, health information, and records of employees and agents.
  • Aflac is providing 24 months of free credit monitoring, identity theft protection and Medical Shield coverage to any potentially affected individuals.
  • The insurer has yet to determine the total number of impacted customers as it continues a detailed review of potentially accessed files.