The Wall Road Journal studies that Aflac is investigating a breach which will have uncovered claims data, well being particulars, Social Safety numbers, and different private information.
That’s the sort of delicate private data you’ll count on your insurer to guard, not by accident hand over to cybercriminals.
In accordance with Aflac, the assault got here from a “extremely refined and well-known group that has the insurance coverage business below siege”
Below siege? Seems like they’ve been watching too many Steven Seagal films (word to self: one Steven Seagal film is simply too many…)
However what’s extra upsetting than that’s the declare that the hackers are “extremely refined.”
Is that as a result of they exploited a zero day vulnerability? No.
Is it as a result of they’ve an evil genius on their group who created some undetectable malware? Nope.
Likelihood is that this is similar hacking gang (Scattered Spider) behind latest information breaches at Marks & Spencer, Victoria’s Secret and different retailers, in addition to assaults concentrating on insurance coverage corporations throughout the USA.
Scattered Spider makes use of the “extremely refined” methodology of phoning a help desk claiming to be a locked out worker, and asking to be granted entry to the community. Perhaps with a slice of phishing, SIM swapping, and multi-factor authentication (MFA) bombing.
Actually not that refined in any respect…
