Particle.news
Download on the App Store
11 ARTICLES
·
4w ago

Allianz Life Breach Confirmed to Expose 1.1 Million Customers, HIBP Finds

The attack is linked to a social‑engineering compromise of a third‑party Salesforce system.

Image
(Eingeschränkte Rechte für bestimmte redaktionelle Kunden in Deutschland. Limited rights for specific editorial clients in Germany.) Allianz Logo auf dem Hochaus in Berlin Treptow (Photo by Bildquelleullstein bild via Getty Images)
Figurines with computers and smartphones are seen in front of the words "Cyber Attack" in this illustration taken, February 19, 2024. REUTERS/Dado Ruvic/Illustration/File Photo
Image

Overview

  • Have I Been Pwned identified about 1.1 million unique Allianz Life customer records in the leak, though dumped Salesforce files contain roughly 2.8 million rows.
  • Exposed information includes names, genders, dates of birth, email and physical addresses, and phone numbers, with state filings also citing stolen Social Security numbers.
  • Allianz Life says the July 16 intrusion targeted a cloud CRM via social engineering, affecting the majority of its 1.4 million customers as well as some financial professionals and employees.
  • The company has notified the FBI, reports no evidence so far of access to internal policy systems, and is offering two years of identity monitoring to affected individuals.
  • Researchers and media link the incident to the ShinyHunters and Scattered Spider campaign stealing Salesforce‑hosted data from multiple major companies, including recent leaks tied to Workday, Google and other brands.