Insurance giant Globe Life says it's being extorted by hackers

ransomware avast
(Image credit: Avast)

American insurance giant Globe Life recently confirmed that cybercriminals tried to extort money in exchange for sensitive data they previously stole.

In mid-June 2024, the company reported a cybersecurity incident in which unknown third parties accessed sensitive customer data through one of its web portals.

It has now submitted a new 8-K form with the U.S. Securities and Exchange Commission (SEC), claiming the crooks accessed sensitive data on at least 5,000 customers - although the final number will probably be bigger, once the investigation concludes.

Not a ransomware attack

So far, the analysis has shown the information was taken from a subsidiary called American Income Life Insurance Company, and included personally identifiable information categories such as names, email addresses, phone numbers, postal addresses, and in some instances Social Security numbers, health-related data, and other policy information.

“The threat actor claims to possess additional categories of information, which claims remain under investigation and have not been verified,” the company said in the form, adding credit card and banking information was safe.

The data was not taken as part of a traditional ransomware attack. Globe Life’s systems were not encrypted, and the break-in did not result in the disruption of any services or operations. However, the crooks still tried to trade the data for money:

“Globe Life recently received communications from an unknown threat actor seeking to extort money from the Company in exchange for not disclosing certain information held and used by the Company and its independent agents,” the 8-K form further reads.

It was left unclear if the company paid the demand or not, but it’s most likely that it did not. Instead, Globe Life brought in third-party cybersecurity experts and notified law enforcement.

Affected customers “will notify individuals affected by this incident,” and take steps to protect and remediate the impact for them, it said.

There is currently no evidence that the data was misused.

Via BleepingComputer

More from TechRadar Pro

TOPICS

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Insurance
Globe Life data breach may have affected 850,000 more patients than previously thought
Security
American National Insurance Company breach data found online
A digital themed isometric showing a neon padlock in the foreground, and a technological diagram of a processor logic board in the background.
MetLife denies hack after ransomware group claims attack
ransomware avast
Engineering giant ENGlobal confirms hackers hit internal data
security
Ransomware gangs allegedly hit two major US healthcare firms, 300,000 patients have data stolen
A person's fingers type at a keyboard, with a digital security screen with a lock on it overlaid.
Blood donation firm reveals donor personal data stolen in cyberattack
Latest in Security
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Ransomware
Cl0p resurgence drives ransomware attacks to new highs in 2025
Google Chrome
Google Chrome security flaw could have let hackers spy on all your online habits
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak
A major Keenetic router data leak could put a million households at risk
Latest in News
A young woman is working on a laptop in a relaxed office space.
I’ll admit, Microsoft’s new Windows 11 update surprised me with its usefulness, providing accessibility fixes, a gamepad keyboard layout, and PC spec cards
inZOI promotional material.
inZOI has become the most wishlisted game on Steam, but I wouldn't get too caught up in the hype
Xbox Series X and Xbox wireless controller set to a green background
Xbox Insiders are currently testing a new Game Hub feature that looks useful, but I've got mixed feelings about it
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Nespresso Vertuo Pop machine in Candy Pink with coffee drinks and capsules
My favorite Nespresso coffee maker just got a fresh new makeover, and now I love it even more
Microsoft Surface Laptop and Surface Pro devices on a table.
Hate Windows 11’s search? Microsoft is fixing it with AI, and that almost makes me want to buy a Copilot+ PC