Prudential Financial, a leading financial services company, has reported a data breach that has affected over 2.5 million individuals.
The breach, which occurred on February 4, 2024, was discovered the following day and has since raised serious concerns about data security within the financial sector.
The Prudential Insurance Company of America, headquartered at 751 Broad Street, Newark, NJ, confirmed the breach in a notice updated on March 29, 2024.
The breach involved an external system hack, compromising the sensitive personal information of millions of individuals, including 21,877 residents of Maine.
"Is Your System Under Attack? Try Cynet XDR: Automated Detection & Response for Endpoints, Networks, & Users!"- Free Demo
Details of the Breach
According to the Maine Gov reports, The breach was orchestrated by external hackers who gained unauthorized access to Prudential’s systems.
The compromised data includes names and other personal identifiers in combination with sensitive information.
The breach was detected on February 5, 2024, just a day after it occurred, prompting the company to take immediate action.
H Jacqueline Brehmer, an associate at Debevoise & Plimpton LLP and outside counsel for Prudential, submitted the breach information.
According to Brehmer, consumer reporting agencies were notified due to the high number of affected Maine residents, which exceeded 1,000.
Prudential has taken steps to mitigate the breach’s impact, offering 24 months of identity theft and credit monitoring services through Kroll to those affected.
This service aims to protect individuals from potential identity theft and financial fraud resulting from the breach.
Response and Future Measures
Prudential Financial has issued electronic notifications to the affected individuals, informing them of the breach and the available protection services.
The company has also provided a copy of the notice to the affected Maine residents.
This incident marks the second significant breach for Prudential within a year, the previous one occurring on July 31, 2023.
In response to the breach, Prudential has committed to enhancing its cybersecurity measures to prevent future incidents.
The company works closely with cybersecurity experts to investigate the breach and implement stronger security protocols.
Additionally, Prudential is cooperating with law enforcement agencies to identify and apprehend the perpetrators.
The financial services industry, known for handling vast amounts of sensitive data, faces increasing threats from cybercriminals.
This breach underscores the critical need for robust cybersecurity measures and constant vigilance to protect consumer information.
Prudential Financial’s swift response and the provision of identity theft protection services demonstrate its commitment to safeguarding its customers.
However, the incident serves as a stark reminder of the ever-present risks in the digital age and the importance of proactive cybersecurity strategies.
Are you from SOC/DFIR Teams? - Sign up for a free ANY.RUN account! to Analyse Advanced Malware Files