A major cyberattack has struck Aflac, the US insurance giant, compromising customer data and potentially exposing sensitive information such as Social Security numbers and health records. The attack is believed to be carried out by a group known as Scattered Spider, who have used social engineering tactics to manipulate employees into gaining access to company systems.
According to reports, the hackers posed as tech support workers over the phone, tricking employees into installing tools on their devices that would grant network access. This tactic is consistent with past attacks by Scattered Spider, a group of young cybercriminals known for aggressively extorting victims and targeting major companies.
The attack was discovered on June 12 and did not affect Aflac’s systems, which were not compromised by ransomware. The company has engaged third-party cybersecurity experts to investigate the breach and ensure its systems are secure.
This incident is part of a growing trend of cyberattacks targeting the US insurance industry, with other major companies such as Erie Insurance and Philadelphia Insurance Companies also falling victim to hacks this month.
Source: https://nypost.com/2025/06/20/business/aflac-customer-data-breached-by-cybercriminals-in-hit-to-us-insurers