After being victimized by a ransomware attack earlier this year, CNA Financial began informing customers of data breaches resulting from the attack.
In March, the insurer’s system was infected with Phoenix Locker ransomware, which cybersecurity experts believe is a new ransomware family developed by the infamous Russian cybercrime group EvilCorp.
But now, CNA has revealed that 75,349 customers are affected by the data breach that led to the ransomware attack.
In a data breach notice sent to affected customers, CNA explained that the cybercriminals behind the attack copied some information from the system before deploying ransomware.
“Investigation revealed that the attackers had access to certain CNA systems at various times from March 5, 2021 to March 21, 2021. During this period, the attackers were ransomware. We copied a limited amount of information before deploying the ware, however, the CNA was able to recover that information quickly and there was no indication that the data was displayed, retained or shared. , There is no reason to suspect that your information has been misused or misused. ”
After investigating the files stolen during the attack, CNA discovered that it contained personal information about the customer, such as name and social security number.
According to a new report from Bleeping ComputeThe press spoke with sources familiar with the attack, saying that cybercriminals deploying Phoenix Locker ransomware were able to encrypt over 15,000 devices connected to the CNA network. At the same time, the attacker also encrypted the computer of a telecommuting CNA employee who logged in to the VPN during the breach.
CNA provides 24 months of free personal information theft protection and credit monitoring from Experian Identity Works to protect customers who gained information during a data breach.
In addition to notifying customers of ransomware attacks and data breaches, the CNA has also notified the FBI, which is working closely with law enforcement agencies to investigate the issue on its own.
Via Bleeping Computer