Pan American Life Insurance impacted by MOVEit breach

Person stands in front of servers.
Arjuna Kodisinghe - Fotolia

Pan American Life Insurance Group, a life, accident and health insurance provider, announced that it was impacted by a data security incident involving Progress Software's MOVEit Transfer.

In May, a ransomware group, Cl0p, started exploiting a zero-day vulnerability in Progress Software's file transfer software. More than 2,500 organizations have reported being attacked and the data thefts have likely impacted more than 83 million people, according to Emsisoft, which provides cybersecurity software.

PALIG said in a press release that the company ceased using MOVEit Transfer and disabled it within the system when Progress announced the vulnerability. The company launched an investigation and notified law enforcement. They have since implemented the MOVEit security patch.

During its investigation, the insurer found that unauthorized third-parties took files that included personal information of individuals including names, addresses, social security numbers, dates of birth, driver's license numbers, contact information, certain biometric data and financial and credit card information. 

PALIG is notifying the people affected by the breach and is offering individuals additional services.

For reprint and licensing requests for this article, click here.
Cyber security Data breaches Cyber attacks Life insurance Ransomware
MORE FROM DIGITAL INSURANCE