Security News > 2021 > July > Insurance giant CNA reports data breach after ransomware attack
CNA Financial Corporation, a leading US-based insurance company, is notifying customers of a data breach following a Phoenix CryptoLocker ransomware attack that hit its systems in March.
CNA is considered the seventh-largest commercial insurance firm in the US based on stats from the Insurance Information Institute.
"The investigation revealed that the threat actor accessed certain CNA systems at various times from March 5, 2021 to March 21, 2021," CNA said in breach notification letters mailed to affected customers today.
The data breach reported by CNA affected 75,349 individuals, according to breach information filed with the office of Maine's Attorney General.
Sources familiar with the attack told BleepingComputer that the Phoenix CryptoLocker operators encrypted over 15,000 devices after deploying ransomware payloads on CNA's network on March 21.
Two months ago, CNA reported that it has restored the systems impacted in the ransomware attack and is operating "In a fully restored state."
News URL
Related news
- Tech giant Nidec confirms data breach following ransomware attack (source)
- Henry Schein discloses data breach a year after ransomware attack (source)
- Insurance admin Landmark says data breach impacts 800,000 people (source)
- Halliburton reports $35 million loss after ransomware attack (source)
- Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks (source)
- Embargo ransomware escalates attacks to cloud environments (source)
- JPCERT shares Windows Event Log tips to detect ransomware attacks (source)
- Global Cyber Attacks to Double from 2020 to 2024, Report Finds (source)
- Ransomware attack forces UMC Health System to divert some patients (source)
- Dutch Police: ‘State actor’ likely behind recent data breach (source)