[Hiscox Breach] Announcement regarding US commercial insurance claims

[Inga Goddijn <inga () riskbasedsecurity com>]

http://www.hiscoxgroup.com/news/press-releases/2018/12-04-2018.aspx

Hiscox recently learned of an information security incident affecting a
specialist law firm in the US that provided advice to Hiscox or its
policyholders on some of its US commercial liability insurance claims.

The incident involved illegal access to information stored on the law
firm’s server, which may have included information relating to up to 1,500
of Hiscox’s US-based commercial insurance policyholders. US small business
online policyholders and all non-US policyholders are unaffected by this
incident. The law firm’s systems are not connected to Hiscox’s IT
infrastructure and Hiscox’s own systems were unaffected by this incident.

Hiscox promptly retained a top IT security and forensics firm to assist
with the investigation and analysis of affected information. Hiscox
reported the incident to law enforcement authorities in the US and UK.
Hiscox has also taken additional security measures in relation to its own
systems.

We take the security of client information seriously, and were very
disappointed to learn about this incident. We are contacting those US
commercial policyholders who may have been affected to provide further
information and assistance.

_______________________________________________
BreachExchange mailing list sponsored by Risk Based Security
BreachExchange () lists riskbasedsecurity com

If you wish to Edit your membership or Unsubscribe you can do so at the following link:
https://lists.riskbasedsecurity.com/listinfo/breachexchange