UPDATED 00:07 EDT / MARCH 25 2021

SECURITY

Insurance company CNA Financial goes offline following a cybersecurity attack

Insurance company CNA Financial Corp. has suffered a cybersecurity attack and the company’s offline as of late Wednesday.

The exact form of the attack is unknown. The company said on its website that it had been targeted by a “sophisticated cybersecurity attack.” The attack is said by the company to have caused “network disruption and impacted certain CNA systems, including corporate email.”

“Upon learning of the incident, we immediately engaged a team of third-party forensic experts to investigate and determine the full scope of this incident, which is ongoing,” the company said. “We have alerted law enforcement and will be cooperating with them as they conduct their own investigation.”

The likeliest culprit is a ransomware attack. While not saying it was REvil, Bleeping Computer reported that the REvil ransomware gang stated in a recent interview that insurance companies are valuable targets.

“Yes, this is one of the tastiest morsels,” a spokesperson for REvil said. “Especially to hack the insurers first — to get their customer base and work in a targeted way from there. And after you go through the list, then hit the insurer themselves.”

If it was REvil, the attack on CNA is yet another notch on its hacking list. The ransomware gang was last in the news March 21 for successfully targeting hardware and electronics firm Acer Inc. and demanding a $50 million ransom. Previous REvil victims include celebrity law firm Grubman Shire Meiselas & Sacks in May and foreign exchange provider Travelex in late December 2019.

But insurance companies are an especially tempting target, Saryu Nayyar, chief executive officer of unified security and risk analytics company Gurucul Solutions Pvt Ltd. A.G., told SiliconANGLE.

“If an attacker can extract a list of clients who have cyberattack insurance, those clients in turn become inviting targets themselves,” Nayyar explained. “Since they have insurance, they are seen as more likely to pay off a ransom. It’s a win-win for the attackers and a lose-lose for everyone else.”

Image: CNA

A message from John Furrier, co-founder of SiliconANGLE:

Your vote of support is important to us and it helps us keep the content FREE.

One click below supports our mission to provide free, deep, and relevant content.  

Join our community on YouTube

Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner to the industry. You guys really are a part of our events and we really appreciate you coming and I know people appreciate the content you create as well” – Andy Jassy

THANK YOU

Cookies

We employ the use of cookies. Find out more.