Insurance giant Aflac identified “suspicious activity” in its U.S. network, which initiated its cybersecurity protocols. 

Aflac said it was able to stop the attack within hours, and its systems were not affected by ransomware. The company said hackers breached files that include “claims information, health information, social security numbers, and/or other personal information, related to customers, beneficiaries, employees, agents, and other individuals in our U.S. business.”

Recommended Stories

• Another California company relocation, expansion in Texas: John Paul Mitchell Systems
• Iran's foreign minister says 'no room' for talks with US until Israel's attacks stop
• Wisconsin Senate approves tax rule exemption for data center

It noted that it was too early to tell how much consumer data may have been stolen. The company said hackers used “social engineering” to access the network. This maneuver can include tricking someone into revealing security information in order to gain access to a network.”

Aflac is the largest victim so far in the digital assault on U.S. insurance companies. 

The attack comes after Google’s Mandiant cybersecurity unit warned earlier this month that the cybercriminal group known as Scattered Spider has been targeting U.S. insurance providers.

“This attack, like many insurance companies are currently experiencing, was caused by a sophisticated cybercrime group,” Aflac said, without naming Scattered Spider. “This was part of a cybercrime campaign against the insurance industry.”

AI PROVISION IN ‘BIG, BEAUTIFUL BILL’ SPLITS REPUBLICANS

Aflac is one of the largest providers of supplemental health insurance in the country. It is used for medical expenses not covered by a primary health insurance provider. Aflac provides supplemental insurance for 50 million customers around the world. 

The company said it is offering free credit monitoring and identity theft protection for those who contact its “dedicated call center.”