A details breach at Bankers Life might have compromised the personally identifiable word of over half a million people.
On 25 October 2018, Lot 1000 company CNO Financial Group, Inc. submitted a report to the Office for Domestic Rights’ Breach Portal at the U.S. Department of Health and Human Services. The information revealed an instance of unauthorized access/disclosure involving one of the subsidiaries of CNO that minister to insurance products and services to U.S. customers. It also specified that the safe keeping incident had potentially affected 566,217 people.
DataBreaches.net traced the incident to Bankers Life after discovering a breach announcement made by the CNO subsidiary. Here’s what the companionship told customers about the data security issue:
We recently rooted that unauthorized third parties accessed credentials belonging to a reduced number of our employees between May 30 and September 13, 2018. During this space, unauthorized third parties used improperly obtained employee poop to gain access to certain company websites, potentially resulting in unofficial access to personal information of policyholders and applicants.
It’s unclear from the advertisement how the actors responsible for the incident obtained those employees’ credentials in the foremost place.
After learning of the suspicious activity on 7 August, Bankers Individual explained in its statement that it notified federal law enforcement and hired an exterior forensics investigator. This expert helped determine that the proceeding might have compromised affected users’ names, addresses, currents of birth, insurance information and the last four digits of their Societal Security Number. The investigation also found that attackers authority have exposed more sensitive pieces of information including in its entirety Social Security Numbers and banking information for a minority of victims.
Bankers Life story said it contacted all possible victims of the data breach and offered at liberty credit monitoring and identity protection services to all affected individuals. It also persuaded affected individuals to monitor their account statements for suspicious liveliness.
News of this security incident comes just a few days after HSBC Bank sent a literatim to an undisclosed number of customers informing them of a data breach that sway have exposed their personal information.