Insurance group AXA has confirmed that one of its Asian business units has experienced a cyber attack, with a criminal group stating it used Avaddon ransomware to do so.
“Asia Assistance was recently the victim of a targeted ransomware attack which impacted its IT operations in Thailand, Malaysia, Hong Kong, and the Philippines. As a result, certain data processed by Inter Partner Assistance (IPA) in Thailand has been accessed,” a spokesperson for Axa Partners, the international arm of the company, told IT Pro in a statement.
The company said there was no evidence that any further data was accessed beyond IPA in Thailand and added that a dedicated taskforce with external forensic experts is investigating the incident.
“AXA takes data privacy very seriously and if IPA’s investigations confirms that sensitive data of any individuals have been affected, the necessary steps will be taken to notify and support all corporate clients and individuals impacted,” it added.
Cyber criminals using Avaddon ransomware said on Saturday they had hacked the group’s Asian operation and stolen 3TB of data, in a dark web post seen by the Financial Times.
RELATED RESOURCE
The post outlined that the information stolen included customers’ personally identifiable information, medical records and claims. It also included ID and passport screenshots, bank documents, hospital bills and patient medical records.
At the beginning of May, AXA announced it would stop writing cyber insurance policies in France that reimburse customers for extortion payments made to ransomware criminals, as reported by the AP. It said it was suspending the option in response to concerns from French justice and cyber security officials on the increase of ransomware globally.
This ransomware attack follows the Colonial Pipeline incident in the US that occurred last week, where the Georgia-based company reportedly paid a $5 million ransom in virtually untraceable cryptocurrency to try and fix its computer systems after being targeted by DarkSide. The hackers sent the firm a decryption tool to fix its systems but this was apparently too slow to fix problems, leaving the company relying on backups to restore systems.
-
Gender diversity improvements could be the key to tackling the UK's AI skills shortageNews Encouraging more women to pursue tech careers could plug huge gaps in the AI workforce
-
Researchers claim Salt Typhoon masterminds learned their trade at Cisco Network AcademyNews The Salt Typhoon hacker group has targeted telecoms operators and US National Guard networks in recent years
-
15-year-old revealed as key player in Scattered LAPSUS$ HuntersNews 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
-
The Scattered Lapsus$ Hunters group is targeting Zendesk customers – here’s what you need to knowNews The group appears to be infecting support and help-desk personnel with remote access trojans and other forms of malware
-
Impact of Asahi cyber attack laid bare as company confirms 1.5 million customers exposedNews No ransom has been paid, said president and group CEO Atsushi Katsuki, and the company is restoring its systems
-
The US, UK, and Australia just imposed sanctions on a Russian cyber crime group – 'we are exposing their dark networks and going after those responsible'News Media Land offers 'bulletproof' hosting services used for ransomware and DDoS attacks around the world
-
A notorious ransomware group is spreading fake Microsoft Teams ads to snare victimsNews The Rhysida ransomware group is leveraging Trusted Signing from Microsoft to lend plausibility to its activities
-
Volkswagen confirms security ‘incident’ amid ransomware breach claimsNews Volkswagen has confirmed a security "incident" has occurred, but insists no IT systems have been compromised.
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
