• Home
  • cyber
  • BackNine Insurance and Financial Services, Inc.
cyber Breach

BackNine Insurance and Financial Services, Inc.

Apr 19, 2022 1 min read
BackNine Insurance and Financial Services, Inc.

The insurance technology startup BackNine exposed the data of thousands of insurance applications after one of its cloud servers had a security lapse.

One of the company's storage servers hosted on Amazon's cloud was left unprotected on the internet.

The sever contained 711,000 files inside, including completed insurance applications and personal information, images, and signatures of applicant and their family.

The company soon locked down the access to the server and secured the data.

Source: https://techcrunch.com/2021/07/16/backnine-insurance-applications-exposed/

TPRM report: https://scoringcyber.rankiteo.com/company/backnine-insurance

"id": "bac91718422",
"linkid": "backnine-insurance",
"type": "Breach",
"date": "07/2021",
"severity": "90",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'industry': 'Insurance Technology',
                        'name': 'BackNine',
                        'type': 'Insurance Technology Startup'}],
 'attack_vector': 'Unprotected Cloud Server',
 'data_breach': {'file_types_exposed': ['Applications', 'Images'],
                 'number_of_records_exposed': 711000,
                 'personally_identifiable_information': ['Names', 'Signatures'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Insurance applications',
                                              'Personal information',
                                              'Images',
                                              'Signatures']},
 'description': 'The insurance technology startup BackNine exposed the data of '
                'thousands of insurance applications after one of its cloud '
                "servers had a security lapse. One of the company's storage "
                "servers hosted on Amazon's cloud was left unprotected on the "
                'internet. The server contained 711,000 files inside, '
                'including completed insurance applications and personal '
                'information, images, and signatures of applicants and their '
                'family. The company soon locked down the access to the server '
                'and secured the data.',
 'impact': {'data_compromised': ['Insurance applications',
                                 'Personal information',
                                 'Images',
                                 'Signatures'],
            'systems_affected': ['Cloud storage server']},
 'post_incident_analysis': {'corrective_actions': ['Secured the data'],
                            'root_causes': ['Misconfiguration of cloud '
                                            'server']},
 'response': {'containment_measures': ['Locked down access to the server'],
              'remediation_measures': ['Secured the data']},
 'title': 'BackNine Data Exposure Incident',
 'type': 'Data Exposure',
 'vulnerability_exploited': 'Misconfiguration'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.