Insurance giant Prudential Financial this week informed the US Securities and Exchange Commission that it fell victim to a data breach earlier this month.
The incident, the company said in a Form 8-K filing, was identified on February 5, one day after a threat actor gained unauthorized access to some of its systems.
“With assistance from external cybersecurity experts, we immediately activated our cybersecurity incident response process to investigate, contain, and remediate the incident,” the company said.
Prudential Financial said that the attackers were able to access company administrative and user data stored on the compromised systems, as well as user accounts associated with employees and contractors.
What the company did not say was how many of its roughly 40,000 employees worldwide might have been impacted by the incident.
However, the company noted that a cybercrime group was likely responsible for the attack. This could mean a ransomware group is behind the intrusion.
“We continue to investigate the extent of the incident, including whether the threat actor accessed any additional information or systems, to determine the impact of the incident,” the company told SEC.
Prudential Financial also said that it has not found evidence of customer or client data theft, and that the incident was reported to law enforcement and regulatory authorities.
The company noted that the incident should not have a material impact on its operations, financial condition, or results of operations.
An American Fortune Global 500 and Fortune 500 company, Prudential Financial provides insurance, investment management, retirement planning, and other products and services to customers in the US, Europe, Asia, and Latin America.
Related: Bank of America Customer Data Stolen in Data Breach
Related: 1.5 Million Affected by Data Breach at Insurance Broker Keenan & Associates
Related: Schneider Electric Responding to Ransomware Attack, Data Breach
