Security News > 2024 > February > Prudential Financial finds cybercrims lurking inside its IT systems
Prudential Financial, the second largest life insurance company in the US and eight largest worldwide, is dealing with a digital break-in that exposed some internal company and customer records to a criminal group.
"Confirmation of the"material cybersecurity incident" was made in an 8K filing [PDF] the corporation deposited with the SEC. "On February 5, 2024, Prudential Financial detected that, beginning February 4, 2024, a threat actor had gained unauthorized access to certain of our systems.
As of yesterday, Prudential Financial believes that the criminal or "Cybercrime group" had "Accessed Company administrative and user data from certain information technology systems and a small percentage of Company user accounts associated with employees and contractors."
Criminals targeting insurers are hoping to get access to social security numbers, financial information and customers' personal details including addresses, dates of birth, and perhaps medical data.
The probe into the "Extent of the incident" continues, says Prudential in the 8K filing, including "Whether the threat actor accessed any additional information or systems."
"As of the date of this Report, the incident has not had a material impact on the Company's operations, and the Company has not determined the incident is reasonably likely to materially impact the Company's financial condition or results of operations." .