Particle.news
Download on the App Store
8 ARTICLES
·
1h ago

Allianz Life Breach Exposes 1.1 Million Customers as ShinyHunters Publish Stolen Data

Regulatory filings say Social Security numbers were among the details taken.

Image
(Eingeschränkte Rechte für bestimmte redaktionelle Kunden in Deutschland. Limited rights for specific editorial clients in Germany.) Allianz Logo auf dem Hochaus in Berlin Treptow (Photo by Bildquelleullstein bild via Getty Images)
Figurines with computers and smartphones are seen in front of the words "Cyber Attack" in this illustration taken, February 19, 2024. REUTERS/Dado Ruvic/Illustration/File Photo
Image

Overview

  • Have I Been Pwned reports that names, genders, dates of birth, emails, phone numbers, and addresses were taken from a Salesforce-hosted database.
  • BleepingComputer says ShinyHunters leaked roughly 2.8 million database records spanning customers and business partners such as wealth firms and advisors.
  • Allianz disclosed that attackers accessed a third-party CRM on July 16 and that customer and employee information was stolen.
  • A spokesperson told Reuters the company will provide two years of identity monitoring to people it identifies as impacted.
  • Reporting links the incident to a broader Salesforce-targeted campaign that used malicious OAuth apps and social engineering to exfiltrate data.