Insurance plan group AXA has confirmed that one of its Asian company units has skilled a cyber attack, with a felony team stating it utilised Avaddon ransomware to do so.
“Asia Help was lately the victim of a specific ransomware attack which impacted its IT operations in Thailand, Malaysia, Hong Kong, and the Philippines. As a end result, specific data processed by Inter Partner Guidance (IPA) in Thailand has been accessed,” a spokesperson for Axa Partners, the worldwide arm of the firm, told IT Pro in a assertion.
The organization mentioned there was no proof that any further facts was accessed over and above IPA in Thailand and extra that a devoted taskforce with external forensic authorities is investigating the incident.
“AXA will take information privacy really significantly and if IPA’s investigations confirms that delicate data of any persons have been influenced, the essential measures will be taken to notify and guidance all company clients and folks impacted,” it extra.
Cyber criminals employing Avaddon ransomware claimed on Saturday they experienced hacked the group’s Asian procedure and stolen 3TB of information, in a dark web write-up witnessed by the Financial Periods.
The put up outlined that the information and facts stolen incorporated customers’ individually identifiable data, medical data and statements. It also provided ID and passport screenshots, lender documents, medical center charges and individual health care information.
At the starting of May well, AXA introduced it would prevent producing cyber coverage procedures in France that reimburse clients for extortion payments designed to ransomware criminals, as described by the AP. It stated it was suspending the solution in reaction to considerations from French justice and cyber security officers on the improve of ransomware globally.
This ransomware attack follows the Colonial Pipeline incident in the US that happened previous week, where by the Ga-dependent business reportedly compensated a $5 million ransom in nearly untraceable cryptocurrency to try out and fix its computer methods just after becoming qualified by DarkSide. The hackers despatched the firm a decryption software to fix its techniques but this was seemingly as well gradual to correct complications, leaving the firm relying on backups to restore systems.
Some pieces of this post are sourced from: