Insurance company Allianz Life has confirmed a major data breach that exposed the personal information of more than 1.1 million U.S. customers.
The attack took place in July 2025 after hackers gained access through a third-party cloud system used by the company.
The breach happened when cybercriminals carried out a social engineering attack on a Salesforce-based customer management platform. While Allianz’s internal servers were not affected, sensitive customer data stored on the external system was stolen.
The exposed information includes names, home addresses, phone numbers, email addresses, and dates of birth. In some cases, Social Security numbers were also taken, increasing the risk of identity theft and financial fraud for those affected.
Allianz has reported the incident to the FBI and state regulators. The company is also notifying all impacted customers and offering 24 months of free credit monitoring and identity theft protection. Allianz stressed that its internal systems remain secure, but admitted that this breach is one of the largest in the insurance industry in recent years.
Cybersecurity experts suspect that the hacker group ShinyHunters may be responsible, as they have previously targeted Salesforce platforms. However, Allianz has not officially confirmed who carried out the attack.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
