Prudential Financial revealed that its network was breached last week, the attackers stole employee and contractor data, and the company was blocked from the compromised system a day later.
The Fortune 500 global financial services giant manages approximately $1.4 trillion in assets and provides insurance and retirement benefits to more than 50 million customers in the United States, Asia, Europe, and Latin America. We provide planning and asset management services.
As the second largest life insurance company in the United States, it has 40,000 employees worldwide and reported 2023 revenues of more than $50 billion.
In an 8-K form filed with the U.S. Securities and Exchange Commission earlier today, the company said that on February 5, after an attacker gained access to some of its systems on February 4, one day earlier, We have revealed that we have detected a breach.
“As of the date of this report, attackers suspected of being a cybercrime group have accessed company administrative and user data from certain information technology systems, as well as a small number of company user accounts associated with employees and contractors. We believe that it was accessed,” Prudential said.
Prudential reported this security breach to law enforcement and notified all relevant regulatory authorities of the data breach.
The ongoing investigation is assessing the full scope and impact of the incident, including possible access to other information and systems on the insurer’s network.
However, at this time, we have not yet found any indication that a malicious actor has obtained customer or client data.
The company stated, “As of the date of this report, this incident has not had a material impact on the Company’s operations, and the Company believes that it is reasonably likely that this incident will have a material impact on the Company’s financial condition and business results.” I have not determined that.”
The personal information of more than 320,000 Prudential customers, whose data was handled by third-party vendor Pension Benefit Information (PBI), was stolen in May 2023 when the Klopp cybercriminal organization infiltrated PBI’s MOVEit Transfer file-sharing platform. It was later exposed.
“Our investigation revealed that the following types of information about you were present on our servers at the time of the incident: name, address, date of birth, telephone number, and social security number,” PBI said at the time. Ta.
A Prudential Financial spokesperson did not immediately respond to a request for comment from BleepingComputer today.
