Aflac, one of the largest supplemental insurance providers in the United States, has confirmed a significant cybersecurity breach that may have exposed sensitive personal data, including Social Security numbers, health records, and insurance claims. The breach, discovered on June 12, 2025, is part of a broader wave of cyberattacks targeting the U.S. insurance industry

The company acted swiftly, initiating its cybersecurity response protocols and containing the intrusion within hours. Aflac emphasized that no ransomware was deployed and that its core operations—such as underwriting policies and processing claims remain unaffected

However, the full extent of the data compromised is still under investigation. The company is offering affected individuals free credit monitoring, identity theft protection, and medical data protection for two years

This incident marks the third major cyberattack on a U.S. insurance firm in just over a week, following similar breaches at Erie Insurance and Philadelphia Insurance Companies. All three attacks share hallmarks associated with a notorious cybercriminal group known as Scattered Spider

Who is Scattered Spider?
Scattered Spider is a loosely organized but highly effective cybercrime collective, believed to be composed primarily of young (19-22), English-speaking hackers from the United States and United Kingdom. The group is known for its use of social engineering tactics—manipulating employees into granting access to internal systems by impersonating IT support or other trusted personnel

These methods allow them to bypass traditional security measures without deploying malware or ransomware.

The group has previously targeted a range of industries, including technology firms, casinos, hotels, and retail chains in both the U.S. and the U.K. Their recent pivot to the insurance sector has raised alarms among cybersecurity experts and federal authorities. According to Google’s Threat Intelligence Group, Scattered Spider tends to focus on one industry at a time, launching coordinated attacks that exploit common vulnerabilities across similar organizations

Industry-Wide Implications
The breach at Aflac underscores growing concerns about the vulnerability of the insurance industry to sophisticated cyber threats. With access to vast amounts of personal and financial data, insurance companies have become prime targets for cybercriminals. The FBI and private cybersecurity firms are actively investigating the recent string of attacks and working to mitigate further damage

As the investigation continues, Aflac has pledged transparency and support for affected individuals. The company, which serves approximately 50 million customers, has also engaged third-party cybersecurity experts to assist in the ongoing review and response efforts.

 If You Are An Aflac Customer, You Should Take Proactive Steps to Protect Yourself

1. Enroll in Free Identity Protection
   • AFLAC is offering 24 months of free identity protection and credit monitoring. Contact their call center or check your breach notification letter for enrollment instructions
2. Freeze Your Credit
   • Prevent new accounts from being opened in your name by freezing your credit at:
     • Equifax
     • Experian
     • TransUnion
3. Monitor Your Accounts
   • Regularly check your bank and credit card statements.
   • Get your free annual credit reports at AnnualCreditReport.com.
4. Use Strong Passwords & Enable MFA
   • Create unique passwords for each account.
   • Turn on multi-factor authentication (MFA) wherever possible.
5. Watch for Phishing Scams
   • Be cautious of emails or calls asking for personal information.
   • Don’t click on suspicious links or attachments.
6. Report Identity Theft
   • If you suspect misuse of your information, report it at IdentityTheft.gov to get a personalized recovery plan.
   • You can also call the FTC at 1-877-438-4338

techcrunch.com
https://techcrunch.com/2025/06/23/us-insurance-giant-aflac-says-customers-personal-data-stolen-during-cyberattack/

1. Enroll in the 24-month free identity protection and credit monitoring offered by AFLAC.
2. Freeze your credit with Equifax, Experian, and TransUnion to prevent new accounts from being opened.
3. Monitor your bank and credit card statements regularly.
4. Check your credit reports at AnnualCreditReport.com.
5. Use strong, unique passwords for each account.
6. Enable multi-factor authentication (MFA) wherever possible.
7. Be cautious of phishing emails or calls asking for personal information.
8. Do not click on suspicious links or attachments.
9. Report identity theft at IdentityTheft.gov to get a personalized recovery plan.
10. Contact your financial institutions to flag or close suspicious accounts.
11. If tax-related identity theft is suspected, file IRS Form 14039 (Identity Theft Affidavit).