- Allianz Life confirms the loss of confidential data on the “majority” of its customers
- Around 1.4 million people could be at risk, admits
- Shinyhunters is the main suspect at this time
The Insurance Giant Allianz Life has confirmed the suffering of a cyber attack that saw him lose confidential data about the “majority” of his clients, with more than one million people at risk.
The North America Insurance Giant said the attack occurred on July 16, 2025, when a threat actor agreed to a CRM system of third -party -based third -party that the company uses.
After discovering the intrusion, the company took measures to contain it and notified the FBI. Until now, there is no evidence that the company’s network or other systems were accessed, it was added.
Shinyhunters hit again?
“The threat actor was able to obtain personal identification data related to the majority of Allianz Life’s customers, financial professionals and selected employees of Allianz Life, using a social engineering technique,” explained a company spokesman.
“Our research is ongoing and we begin the process of reaching the affected people with dedicated resources to help them. This incident is related only to Allianz Life, which currently has 1.4 million customers.”
While Allianz Life did not discuss the identity and reason of the attackers, Bleepingcomputer He affirms that this was Shinyhunters’ work, a threat actor known with numerous successful violations under his belt.
The group has existed since approximately 2020, and during that time, it committed a series of high profile organizations, including Microsoft, Mashable and Nitro PDF. He even claims to have raped AT&T, although the telecommunications company denied that the violation has happened.
Allianz Life (abbreviation for Allianz Life Insurance Company of North America) offers life insurance and annual products in the United States.
It manages a portfolio exceeding $ 124 billion, mainly invested in high quality values, and has approximately 1.4 million customers.
How to stay safe
The attack is particularly worrying, since these records could contain more than enough information for computer pirates to launch highly personalized and successful phishing campaigns, which leads to identity theft, cable fraud and even ransomware attacks.
If you are worried that you have been caught in the incident, do not worry, there are a number of methods to find out. Haveibeenpwned? It is probably the best resource to verify if your data has been affected, offering a decrease in each large cybercrime incident of recent years.
And if you keep the passwords on a Google account, you can use the Google password verification tool to see if any has committed, or register in one of the best password administrator options that we have rounded to make sure that its session is protected.
