CNA Insurance Hit With Cyberattack
CNA Insurance is one of the largest commercial insurers that provides various insurance policies, including against cyber attacks. Ironically, the company itself is now experiencing a cyberattack, which it revealed yesterday. It said to have realized the attack on Match 21st and pulled the website offline with the following message; In an updated statement, CNA Insurance admitted they had taken the website offline due to a cyberattack, which also affects their corporate email. Further, they have disconnected all the network’s concerned systems from limiting the consequences. They claim to emerge a third-party forensic expert for investigating the incident. They’ve also informed law enforcement and assists employees to continue the work with workarounds wherever possible. Finally, they affirmed that their data’s security (and the customers’) is given utmost importance and will inform the affected in case happened. While it’s still called a cyberattack, a source to BleepingComputer said that it was actually a ransomware attack that disrupted operations. In that case, this incident would have severe consequences as it’s holding a trove of all its customers’ sensitive data. This includes their PII and the cyber weak points in the case of cyber insurance policyholders, which can benefit the ransomware group to make specific choices and target effectively.
