Hackers Steal Personal Data of Most Customers and Employees of Allianz Life

The U.S. insurance company Allianz Life announced that a cyberattack resulted in the theft of personal information belonging to most of its customers, financial professionals, and certain employees. The breach was classified as a hack and is believed to have occurred on July 16, with the company discovering it the following day.

Though the exact number of affected customers has not been disclosed, Allianz Life confirmed that the incident impacted about 1.4 million clients. The company reported that it promptly informed the FBI and that an ongoing investigation has so far indicated that neither its policy administration system nor other core systems were compromised.

A spokesperson explained that the breach involved unauthorized access to a third-party, cloud-based Customer Relationship Management (CRM) system, which was exploited through social engineering tactics. The breach allowed the threat actor to access personally identifiable information (PII) of numerous individuals associated with the company.

The incident was first reported to the public by TechCrunch. Despite the breach’s severity, Allianz Life is assessing its systems and taking measures to safeguard client data and prevent future attacks.