Hackers have leaked data allegedly stolen from a subsidiary of insurance giant Allianz, with analysis revealing around 1.1 million unique records. The breach targeted a third-party CRM system used by Allianz Life Insurance Company of North America, affecting many customers, financial professionals, and some employees.
The attack has been linked to the Scattered Spider and ShinyHunters groups, which may have joined forces. Their campaign uses social engineering to infiltrate Salesforce systems across major companies.
Other reported victims include Adidas, Cisco, Dior, Louis Vuitton, Google, Air France/KLM, and possibly Workday. The hackers briefly operated a Telegram channel to leak stolen data, likely from firms that refused to pay extortion demands. That channel has since been taken down.
2.8 million leaked records were initially reported, but 1.1 million unique entries containing names, emails, birthdates, phone numbers, and addresses were confirmed. Notably, 72% of the exposed emails had already appeared in previous breaches.
Allianz Life has notified U.S. authorities but hasn’t disclosed the full scope of the incident.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
