Aflac Hit by Cyberattack, Customer Information May Be at Risk

Insurance giant Aflac has revealed that cybercriminals broke into its U.S. network earlier this month and may have accessed sensitive customer data.

In a federal filing made on June 20, Aflac said it discovered suspicious activity on June 12. The company believes it was able to stop the attack within hours. Aflac called the incident part of a larger “cybercrime campaign against the insurance industry.”

The breach may have exposed files containing personal details like Social Security numbers and health-related information. Aflac has not yet confirmed how many customers were affected.

Aflac, which serves over 50 million policyholders, is working with third-party cybersecurity experts to investigate the incident. A company spokesperson told Reuters that the hack appears to be the work of Scattered Spider — a well-known cybercrime group that often targets companies in waves.

This is the third major cyberattack on an insurance company this month. Earlier, both Erie Insurance and Philadelphia Insurance Companies were hit by similar network disruptions.

Despite the breach, Aflac said its main systems remain unaffected, and all services are continuing as normal.

The investigation is still ongoing.