Insurance coverage firm Allianz Life confirmed that the private info of a “majority” of its 1.4 million prospects was uncovered in a knowledge breaches that occurred earlier this month.
“On July 16, 2025, a malicious risk actor accessed a third-party cloud-based CRM system utilized by Allianz Life Insurance coverage Firm in North America,” a spokesman for Allianz Life advised BleepingComputer.
“Menace actors have obtained personally identifiable information associated to nearly all of Allianz Life prospects, the monetary specialists, and have been in a position to make use of social engineering strategies to pick out Allianz Life staff.”
“We took speedy steps to comprise and mitigate the difficulty and notified the FBI. Based mostly on earlier investigations, there is no such thing as a proof that now we have entry to the Allianz Life Community or different company techniques, together with coverage administration techniques.”
“Our investigation is ongoing and now we have begun a means of reaching out to affected people with devoted sources to assist them. The incident is just related to Allianz Life, which presently has 1.4 million prospects.”
Allianz Life is a US-based supplier of pensions and life insurance coverage for over 1.4 million People. The corporate is owned by Allianz SE, a world monetary providers group primarily based in Germany, and serves greater than 128 million prospects.
The corporate first revealed a violation of pressured submitting with the Maine Legal professional Basic’s Workplace on Saturday, and issued a warning of the violation.
“If Allianz identifies an affected particular person, a shopper notification can be offered,” reads the placeholder notification.
Allianz Life refused to reply questions concerning the risk actors and whether or not they have been pressured, however BleepingComputer realized that the assault was believed to have been carried out by the Shinyhunters’ coercion group.
Shinyhunters is a bunch of risk actors related to outstanding information breaches and assaults towards Powerschool and Snowflake assaults, which has influenced Santander, Ticketmaster, AT&T, Advance Auto Components, Neiman Marcus, and Cylance.
Though a number of Shinyhunters members have been arrested over the previous few years, together with a current arrest in France, the hacking group continues to assault.
Final month, Mandiant warned that Shinyhunters had begun concentrating on Salesforce CRM prospects with social engineering assaults.
Throughout these assaults, hackers impersonate IT help personnel and request focused staff to hook up with Salesforce Information Loader.
As soon as the connection is accepted, the risk actor will use the Salesforce Information Loader to take away the information from Salesforce, then power the corporate.