Allianz Life data breach exposed data of most of 1.4M customers via third-party CRM hack using social engineering.——————————————————————————————————————Allianz Life confirmed a data breach exposing personal information of most of its 1.4 million customers. On July 16, 2025, a threat actor accessed a third-party CRM system using social engineering, compromising the data of customers, financial professionals, and some employees.When reached by TechCrunch, Allianz Life spokesperson Brett Weinberg confirmed the breach.*’On July 16, 2025, a malicious threat actor gained access to a third-party, cloud-based CRM system used by Allianz Life,’ the company spokesperson Brett Weinberg [told TechCrunch](https://techcrunch.com/2025/07/26/allianz-life-says-majority-of-customers-personal-data-stolen-in-cyberattack/). ‘The threat actor was able to obtain personally identifiable data related to the majority of Allianz Life’s customers, financial professionals, and select Allianz Life employees, using a social engineering technique,’*The Insurance firm stated that it took immediate action to contain and mitigate the incident and notified the FBI. The company emphasized that, so far, there is no evidence that its internal network or critical systems, including its policy administration system, were accessed. The investigation is still ongoing, and Allianz Life has begun notifying affected individuals, offering dedicated support.The company disclosed the data breach in a filing with [Maine’s Attorney General’s Office](https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/0446bff3-a013-43ed-82fa-bca6bb157de1.html).Allianz Life is among several insurance companies recently hit by cyberattacks, including [Aflac](https://www.reuters.com/business/insurer-aflac-discloses-cybersecurity-incident-2025-06-20/), in a wave linked to the cybercrime group [Scattered Spider](https://securityaffairs.com/176323/cyber-crime/scattered-spider-cybercrime-group-member-pleaded-guilty.html).Although Allianz Life declined to name the threat actor behind the attack, Bleeping Computer [reported](https://www.bleepingcomputer.com/news/security/allianz-life-confirms-data-breach-impacts-majority-of-14-million-customers/) the breach is believed to be linked to the [ShinyHunters group](https://securityaffairs.com/157251/cyber-crime/shinyhunters-member-sentenced-to-prison.html).ShinyHunters is a popular hacking crew that is known to have offered for sale data stolen from tens of major organizations, including [Tokopedia](https://securityaffairs.co/wordpress/102666/data-breach/tokopedia-hacked.html), [Homechef](https://securityaffairs.co/wordpress/105371/cyber-crime/databases-stolen-14-companies.html), [Chatbooks.com](https://securityaffairs.co/wordpress/106504/data-breach/shinyhunters-data-leak.html), [Microsoft](https://securityaffairs.co/wordpress/106504/data-breach/shinyhunters-data-leak.html), [Santander](https://securityaffairs.com/163956/data-breach/shinyhunters-claims-santander-breach.html), [Ticketmaster](https://securityaffairs.com/163999/data-breach/ticketmaster-confirms-data-breach.html), and [AT-&T](https://securityaffairs.com/121439/data-breach/shinyhunters-70m-att-customers.html).Follow me on Twitter: [@securityaffairs](https://twitter.com/securityaffairs) and [Facebook](https://www.facebook.com/sec.affairs) and [Mastodon](https://infosec.exchange/@securityaffairs)[Pierluigi Paganini](http://www.linkedin.com/pub/pierluigi-paganini/b/742/559)([SecurityAffairs](http://securityaffairs.co/wordpress/) — hacking, data breach)
Related Tags:
Octo Tempest
NAICS: 524 – Insurance Carriers And Related Activities
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 541 – Professional
Scientific
Technical Services
NAICS: 52 – Finance And Insurance
NAICS: 518 – Computing Infrastructure Providers
Data Processing
Web Hosting
Related Services
NAICS: 51 – Information
Roasted 0ktapus
Scattered Spider
Associated Indicators: