Insurance broker Keenan & Associates is notifying more than 1.5 million clients and employees that a ransomware attack that occurred late August compromised their personal and health data.
The California-based insurer that handles employee benefits, workers’ compensation and property liability said information potentially compromised in the incident includes:
- Names
- Birthdates
- Social Security numbers
- Passport numbers
- Driver’s licenses
- Health insurance information
- General health information
The broker said that on Aug. 27 it had discovered certain disruptions occurring on their network servers, and within a few hours they identified it as a cybersecurity incident, contained it and notified the FBI.
An investigation determined that the bad actors had gained access to certain internal systems at various times for about a week before the discovery.
Emily Phelps, VP, Cyware had this comment:
“Hospitals and clinics are big targets for malicious hackers because of their access to important and private data. Threat actors often work together, and despite its value, threat intelligence sharing adoption is slow across the cybersecurity space. To address these threats, it’s crucial to commit to ongoing security education for staff, equipping them with the knowledge to identify and sidestep prevalent cyber schemes like phishing. Furthermore, forging alliances with external security firms and ISACs can supplement internal capabilities, providing access to specialized skills and relevant threat intelligence that are otherwise challenging to maintain in-house.”
David Ratner, CEO, HYAS Infosec follows with this comment:
“Kudos to Keenan & Associates to reacting quickly to contain the breach before it got larger, but this event only serves to remind us that not only is everyone vulnerable, but substantial data exfiltration doesn’t need to take months and can occur quite quickly. It’s why organizations need to move toward proactive cyber resiliency, to detect breaches and anomalies in the earliest phases and before data exfiltration or other damage occurs.”
The one comment that I have about this is that they discovered that they were pwned within a week. While not nearly as bad as 23andMe who were pwned for months before they found out, it highlights that if you can’t keep the bad guys out, at least you should be able to detect them rapidly and take action to limit the damage.
Like this:
Like Loading...
Related
This entry was posted on January 31, 2024 at 8:40 am and is filed under Commentary with tags Hacked. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Keenan & Associates Pwned By Ransomware… 1.5 Million Affected
Insurance broker Keenan & Associates is notifying more than 1.5 million clients and employees that a ransomware attack that occurred late August compromised their personal and health data.
The California-based insurer that handles employee benefits, workers’ compensation and property liability said information potentially compromised in the incident includes:
The broker said that on Aug. 27 it had discovered certain disruptions occurring on their network servers, and within a few hours they identified it as a cybersecurity incident, contained it and notified the FBI.
An investigation determined that the bad actors had gained access to certain internal systems at various times for about a week before the discovery.
Emily Phelps, VP, Cyware had this comment:
“Hospitals and clinics are big targets for malicious hackers because of their access to important and private data. Threat actors often work together, and despite its value, threat intelligence sharing adoption is slow across the cybersecurity space. To address these threats, it’s crucial to commit to ongoing security education for staff, equipping them with the knowledge to identify and sidestep prevalent cyber schemes like phishing. Furthermore, forging alliances with external security firms and ISACs can supplement internal capabilities, providing access to specialized skills and relevant threat intelligence that are otherwise challenging to maintain in-house.”
David Ratner, CEO, HYAS Infosec follows with this comment:
“Kudos to Keenan & Associates to reacting quickly to contain the breach before it got larger, but this event only serves to remind us that not only is everyone vulnerable, but substantial data exfiltration doesn’t need to take months and can occur quite quickly. It’s why organizations need to move toward proactive cyber resiliency, to detect breaches and anomalies in the earliest phases and before data exfiltration or other damage occurs.”
The one comment that I have about this is that they discovered that they were pwned within a week. While not nearly as bad as 23andMe who were pwned for months before they found out, it highlights that if you can’t keep the bad guys out, at least you should be able to detect them rapidly and take action to limit the damage.
Share this:
Like this:
Related
This entry was posted on January 31, 2024 at 8:40 am and is filed under Commentary with tags Hacked. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.