Insurance coverage large Globe Life says an unknown risk actor tried to extort cash in change for not publishing information stolen from the corporate’s techniques earlier this yr.
Based in 1900, Globe Life is among the many largest suppliers of life and medical health insurance plans in the US, with a market capitalization of $12 billion and a complete income that exceeds $5.3 billion.
International Life beforehand disclosed a knowledge breach on June 13 after discovering they’d been compromised whereas reviewing potential vulnerabilities associated to entry permissions and consumer id administration for its net portal.
On the time, the corporate warned that the hackers might have accessed client and policyholder information following a profitable breach of one of many net portals.
Though the corporate’s operations weren’t considerably disrupted as a result of incident, there was concern about what information may need been stolen, as such a state of affairs might doubtlessly affect tens of millions.
In a brand new submitting submitted to the SEC immediately, Globe Life says that not less than 5,000 clients of its subsidiary, American Revenue Life Insurance coverage Firm, are impacted. Nonetheless, this quantity might enhance because the investigation continues.
Globe Life additionally says that the cybercriminals behind the assault tried to extort the corporate into paying a ransom in change for not publishing the stolen information.
The info samples the agency acquired from the risk actor seem like associated to certainly one of its subsidiaries, American Revenue Life Insurance coverage Firm.
“Globe Life Inc. not too long ago acquired communications from an unknown risk actor searching for to extort cash from the Firm in change for not disclosing sure data held and utilized by the Firm and its unbiased brokers,” reads the Thursday morning SEC submitting.
“Primarily based on the Firm’s investigation so far, which stays ongoing, the Firm believes that data relayed to the Firm by the risk actor might relate to sure clients and buyer leads that may be traced to the Firm’s subsidiary, American Revenue Life Insurance coverage Firm.”
The data stolen by the cybercriminals consists of the next information varieties, which differ per particular person: full names, e mail addresses, telephone numbers, postal addresses, Social Safety Numbers, health-related information, and coverage data.
International Life has additionally clarified that the extortion try doesn’t contain ransomware, so there was no information encryption of file locks on the corporate’s techniques.
Concerning the monetary affect of the incident, as of immediately, International Life believes that it’s going to not have a cloth affect on its enterprise operations and doesn’t anticipate it to have an effect on its financials.