[BreachExchange] [Hiscox Breach] Announcement regarding US commercial insurance claims

Inga Goddijn inga at riskbasedsecurity.com
Sat Apr 14 19:04:27 EDT 2018


http://www.hiscoxgroup.com/news/press-releases/2018/12-04-2018.aspx

Hiscox recently learned of an information security incident affecting a
specialist law firm in the US that provided advice to Hiscox or its
policyholders on some of its US commercial liability insurance claims.

The incident involved illegal access to information stored on the law
firm’s server, which may have included information relating to up to 1,500
of Hiscox’s US-based commercial insurance policyholders. US small business
online policyholders and all non-US policyholders are unaffected by this
incident. The law firm’s systems are not connected to Hiscox’s IT
infrastructure and Hiscox’s own systems were unaffected by this incident.

Hiscox promptly retained a top IT security and forensics firm to assist
with the investigation and analysis of affected information. Hiscox
reported the incident to law enforcement authorities in the US and UK.
Hiscox has also taken additional security measures in relation to its own
systems.

We take the security of client information seriously, and were very
disappointed to learn about this incident. We are contacting those US
commercial policyholders who may have been affected to provide further
information and assistance.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riskbasedsecurity.com/pipermail/breachexchange/attachments/20180414/d25de7e6/attachment.html>


More information about the BreachExchange mailing list