Allianz Life hit by hackers, customer and staff personal data stolen

Graham Cluley
Graham Cluley @

 @grahamcluley.com
 / grahamcluley

Allianz data 730

US insurance firm Allianz Life has told the media that hackers stole personal info of the “majority” of its customers and staff earlier this month.

The company says that a hacker gained access to an unnamed third-party cloud-based CRM used by Allianz Life, using a social engineering attack.

The firm hasn’t said if it has received a ransom demand, and it hasn’t shared any details on who the hackers might have been.

Sign up to our free newsletter.
Security news, advice, and tips.

However, we’ve seen other insurance firms targeted recently, including Aflac.

What’s the betting that this is hackers once again using the Scattered Spider playbook – calling up support teams posing as customers or employees, pretending to be locked out of their accounts, and tricking support staff into granting them access.

Maybe with a slice of phishing, SIM swapping, and multi-factor authentication (MFA) bombing too…

Graham Cluley
Graham Cluley

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and hosts the popular "Smashing Security" podcast. Follow him on LinkedIn, Bluesky and Mastodon, or drop him an email.

You may also like...

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.