Aflac Hit by Cyberattack, Customer Data Potentially Exposed
Insurance giant Aflac confirmed on Friday that it is investigating a cybersecurity incident that may have compromised the personal data of policyholders across its U.S. network. The company described the attack, discovered on June 12, as the work of a “sophisticated cybercrime group,” though no specific group has been named.
Aflac, which provides life, health, and accident insurance, stated that while the full extent of the breach remains under review, some files containing sensitive customer information — including Social Security numbers and health records — may have been exposed.
Response and Investigation Underway
Aflac said the breach was contained within hours and that it has engaged third-party cybersecurity experts to conduct a full forensic investigation. The company emphasized that it is still in the early stages of assessing how many individuals were affected.
“Protecting our customers’ data is a top priority. We’re working with external cybersecurity professionals to fully understand the scope of the incident and will notify all affected individuals once identified.”
Insurance Industry Faces Growing Cyber Threats
The breach adds to a growing list of cyberattacks targeting insurers and healthcare firms. Aflac manages the data of over 50 million policyholders in the U.S. and Japan, making it a lucrative target for attackers.
The incident follows last year’s devastating breach of UnitedHealth’s Change Healthcare unit by the ALPHV (aka BlackCat) ransomware group, which reportedly impacted over 100 million Americans.
Market Impact and Outlook
In response to the news, Aflac shares fell 1.3% in premarket trading on Friday. Analysts say that while the long-term financial damage remains uncertain, reputational risks and potential regulatory scrutiny could be significant.
The company has not yet confirmed whether any ransomware demands were made, and the attackers have not claimed responsibility publicly.
Aflac says it will continue to provide updates as the investigation unfolds.
Related articles
Cybersecurity Oracle E-Business Suite Hack Wave: Washington Post Confirms Data Breach
Cybersecurity Thousands of Hikvision Cameras Still Exposed to Critical CVE Nearly a Year Later
Cybersecurity Whistleblower Claims Twitter Threatens U.S. National Security
Science Gene Editing Lowers LDL and Triglycerides in First-in-Human Trial
AI news OpenAI Signs 7-Year, $38B AWS Deal to Scale Next-Gen AI
Crypto