Allianz Life, the leading US insurance company, confirmed with TechCrunch that hackers stole the “majority” of their customers, financial experts and employees during a data breach in mid-July.
When they reached TechCrunch, Allianz Life spokesman Brett Weinberg confirmed the violation.
“On July 16, 2025, malicious threat actors accessed a third-party cloud-based CRM system used by Allianz Life,” referring to the Customer Relationship Management (CRM) database that contains information about customers. “Threat actors were able to obtain personally identifiable data related to the majority of Allianz Life clients, financial experts, and were able to use social engineering techniques to select Allianz Life employees,” the spokesman said.
The company disclosed the data breach on Saturday in a legally necessary filing with the Maine Attorney General, but did not immediately provide many affected customers. According to a spokesman, Allianz Life has 1.4 million customers. Parent company Allianz has over 125 million customers worldwide.
Allianz Life notified the FBI, adding that there was “no evidence” that other systems on the network were at risk.
The insurance giant wouldn’t say whether they received communications from hackers, such as ransom memos. The company also does not attribute violations to hacking groups.
Allianz Life has been hacked amid a wave of data breaches targeting the wider insurance industry, including AFLAC, the latest company in the past month and a leading provider of supplemental health insurance. Google security researchers said in June that they were “aware of multiple intrusions” across the insurance sector caused by scattered spiders. It says it is a group of hackers and techniques that rely on social engineering techniques to invoke help and allow access to the company’s network.
Before targeting insurance companies, scattered spider hackers were seen targeting the UK retail and aviation and transport sectors, and have historically been known for hacking targeting Silicon Valley tech giants.
According to a Maine submission, Allianz is expected to begin notifying affected individuals around August 1.
Do you know more about Allianz Life’s cyberattacks? Are you an affected customer or an employee? Please contact this reporter securely via a message encrypted with Zackwhittaker.1337.
Source link
