A global concern has arisen as it’s believed that hackers infiltrated the widely utilised online file-sharing program, MOVEit, exploiting its vulnerabilities to gain unauthorised access to the databases of numerous companies.
Microsoft has identified the affiliate of a ransomware group, alternatively known as Clop or Cl0p, as the responsible entity behind the MOVEit attacks. Consequently, prominent organisations like the BBC, British Airways, and several others have been impacted by this cyberattack. The latest victim is a well-known insurance company.
Prudential Malaysia issued a statement very recently revealing that Prudential Assurance Malaysia Berhad (PAMB) and Prudential BSN Takaful Berhad (PruBSN) suffered the impact of a worldwide MOVEit data-theft attack, which exploited a previously unknown vulnerability.
The company said upon detecting the breach, immediate measures were taken to isolate the compromised server, and an incident response team was deployed to conduct a comprehensive investigation. Furthermore, relevant authorities have been duly informed about the incident.
The company said that there’s a high possibility that personal data of both agents and customers has been affected, which may include details such as names, contact numbers, national identification numbers, bank account information, and potentially partial credit card information. To mitigate the risk of unauthorised transactions, the company is working to ascertain the extent of the impact as swiftly as possible.
In order to assist those affected, prompt actions are being implemented to inform impacted customers and provide them with the necessary support. Additionally, they have set up a dedicated hotline with extended operating hours, allowing customers to seek assistance immediately.
Prudential further emphasised that they consistently evaluate and enhance their defence systems, promptly addressing the vulnerability discovered in the MOVEit software.
Additionally, the company assured that their business operations continue to run smoothly without any disruption to customer services.