Hackers recently leaked data allegedly stolen from a subsidiary of insurance giant Allianz, and an analysis identified roughly 1.1 million unique information records.
Allianz Life Insurance Company of North America revealed last month that a threat actor had targeted a third-party customer relationship management (CRM) system and obtained the information of a majority of customers, financial professionals and some employees.
The company said at the time that it has 1.4 million customers, but did not say exactly how many were impacted by the data breach.
The attack has since been attributed to the Scattered Spider and ShinyHunters cybercrime groups, which appear to be working together, with some reports claiming they have merged.
The cybercriminals have conducted a large-scale campaign that relies on social engineering to compromise the Salesforce instances of major companies.
Other victims are believed to include Adidas, Cisco, Dior, Louis Vuitton, Google, Air France/KLM, and possible Workday.
The hackers recently created a Telegram channel where they started leaking some of the stolen data, presumably from companies that have refused to give in to their extortion attempts. The Telegram channel appears to have since been deleted.
Bleeping Computer reported that the hackers had leaked 2.8 million records allegedly stolen from Allianz Life.
However, an analysis conducted by the breach notification service Have I Been Pwned showed that there were actually 1.1 million unique records containing names, email addresses, dates of birth, phone numbers, and physical addresses.
Have I Been Pwned said 72% of the exposed email addresses had already been impacted by previously disclosed data breaches.
Allianz Life has reported the breach to authorities in the United States, but it has yet to officially say how many people are impacted.
Related: Scattered Spider Targeting VMware vSphere Environments
Related: Help Desk at Risk: Scattered Spider Shines Light on Overlook Threat Vector
Related: Scattered Spider Activity Drops Following Arrests, but Others Adopting Group’s Tactics
