Cyber Attack cyber

Aflac Inc.

Jun 1, 2025 1 min read
Aflac Inc.

Aflac Inc. experienced a **data breach** in June as part of a broader **cyber-intrusion campaign** targeting insurance companies. The incident involved **hackers using social engineering** to infiltrate the company’s network, potentially compromising sensitive data. Over **20 lawsuits** were filed following the disclosure, leading to a **consolidated legal action** in the **US District Court for the Middle District of Georgia**, with six law firms appointed as interim co-lead counsel. The breach raises concerns over **unauthorized access to customer or employee data**, though the exact scope of compromised information (e.g., financial records, personal identifiers, or internal documents) remains undisclosed. Given the **targeted nature of the attack** (insurance sector) and the **legal repercussions**, the incident suggests **significant reputational and financial risks**, including potential **regulatory penalties, customer distrust, and fraudulent activity** stemming from exposed data. The use of **social engineering**—a common tactic in **cyber attacks**—highlights vulnerabilities in human-centric security protocols.

Source: https://news.bloomberglaw.com/business-and-practice/aflac-june-cybersecurity-breach-suit-has-interim-class-counsel

TPRM report: https://www.rankiteo.com/company/aflac

"id": "afl2093220101625",
"linkid": "aflac",
"type": "Cyber Attack",
"date": "6/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'insurance',
                        'location': 'United States (US District Court for the '
                                    'Middle District of Georgia jurisdiction)',
                        'name': 'Aflac Inc.',
                        'type': 'corporation'}],
 'attack_vector': 'social engineering',
 'date_publicly_disclosed': '2023-06',
 'description': 'Aflac Inc. was a victim of a broader cyber-intrusion campaign '
                'targeting insurance companies. Hackers used social '
                'engineering to access its network, leading to a consolidated '
                'data breach lawsuit with over 20 cases filed. The suits are '
                'consolidated in the US District Court for the Middle District '
                'of Georgia.',
 'impact': {'brand_reputation_impact': 'potential (lawsuits filed)',
            'data_compromised': True,
            'legal_liabilities': 'consolidated lawsuit (20+ cases, 6 law firms '
                                 'as interim co-lead counsel)'},
 'initial_access_broker': {'entry_point': 'social engineering'},
 'investigation_status': 'ongoing (lawsuits consolidated, preliminary report '
                         'cited)',
 'references': [{'source': 'Generic cybersecurity news report (unspecified)'}],
 'regulatory_compliance': {'legal_actions': 'consolidated lawsuit (20+ cases, '
                                            '6 law firms as interim co-lead '
                                            'counsel)'},
 'title': 'Aflac Data Breach via Social Engineering Attack',
 'type': ['data breach', 'cyber intrusion']}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.