Chubb, a major provider of cyber security insurance to companies affected by data breaches, has itself become the target of a data breach.
The insurance giant told TechCrunch that it was investigating a “security incident” affecting unauthorized access to data by an unnamed third party. Chubb spokesman Jeffrey Zack said the company had "no evidence" that the incident affected Chubb's own network and that its network was "still fully operational."
However, the spokesman declined to comment or answer any of our questions, even if this was the case with his customers.
Brett Callow, a security analyst at security firm Emsisoft, first warned TechCrunch of the violation on Thursday. According to Callow, the security incident was a ransomware attack that stole data and was launched by the Maze ransomware group. Maze not only spreads over a network, infects and encrypts every computer on its way, but also filters the data onto the attackers' servers and is kept as a ransom. If a ransom is not paid, the attackers publish the files online.
In December, the FBI privately warned companies of an increase in labyrinth-related ransomware incidents.
Callow said the attackers behind the incident released a list of data allegedly stolen by Chubb that included the names and email addresses of three executives, including CEO Evan Greenberg.
The listing said that the violation occurred in March. However, the attackers have not yet released any of the stolen files.
Chubb is one of the largest cybersecurity providers in the United States. It offers incident response services and covers companies from losses due to data breaches. Target filed a $ 74 million lawsuit against Chubb last year after the retailer claimed that the insurance company had not adequately compensated for the 201
Did you tip? You can send tips safely via Signal and WhatsApp to +1 646-755–8849.