Aflac has become the largest victim in a series of cyberattacks targeting U.S. insurance providers, with hackers potentially accessing sensitive customer data including Social Security numbers and health claim information.
The company confirmed the breach Friday, revealing that intruders used social engineering tactics to infiltrate its systems last week before being contained within hours.
The attack bears the hallmarks of Scattered Spider, a cybercrime group linked to recent breaches at Erie Insurance and Philadelphia Insurance Companies. According to cybersecurity experts familiar with the investigation, the group typically poses as IT support to gain network access. Aflac stated no ransomware was deployed but acknowledged the full scope of compromised data remains under assessment.
Former FBI cyber official Cynthia Kaiser emphasized the group’s dangerous efficiency, noting they “can execute full attacks in hours” compared to days for typical ransomware operations. The warning comes as Halcyon researchers prepare a report detailing Scattered Spider’s use of cloned help desk domains to bypass security protocols.
With the insurance sector managing highly sensitive personal data, these breaches highlight growing vulnerabilities in an industry increasingly targeted by sophisticated cybercriminals. Analysts warn the attacks may intensify without improved employee authentication measures and heightened awareness of social engineering tactics.
