AXAHY - Insurer AXA reportedly hit in ransomware attack after ending ransomware payment coverage
Ransomware group Avaddon says it stole 3 TB of sensitive data from the Asian branches of insurer AXA ([[AXAHF]],[[AXAHY]]), according to posts spotted by Bleeping Computer. The group also temporarily took down AXA websites with a distributed denial-of-service ((DDoS)) attack.The group says the data includes customer medical reports, ID cards, bank account and payment records, claim forms, and contracts.News of the breach comes after AXA said it would stop covering ransomware payments in cyber-insurance policies in France. The date of the actual breach isn't known.AXA tells Bleeping Computer that Thai partner Asia Assistance was recently the "victim of a targeted ransomware attack," which exposed "certain data processed by Inter Partners Association." The insurer says there's presently "no evidence that any further data was accessed beyond IPA in Thailand.Last week, ransomware-as-a-service group DarkSide, responsible for the Colonial Pipeline hack, claimed to be retreating after its servers were seized and its cryptocurrency account was drained by an outside party.
For further details see:
Insurer AXA reportedly hit in ransomware attack after ending ransomware payment coverage