Prudential Hit by Ransomware Group
The ALPHV/BlackCat ransomware group says it has stolen information from Prudential Financial and is holding it for ransom, but Prudential has concluded that the breach seems to be small.
The Newark, New Jersey-based life and annuity issuer first revealed the hack in a notice filed with the U.S. Securities and Exchange Commission on Feb. 13. It gave the SEC an update Wednesday.
“On the basis of the investigation to date, we have not found any evidence of malware, ransomware, data destruction or alteration, or that the threat actor currently has access to our systems,” Prudential says in the notice. “We continue to investigate the extent and impact of the incident, including whether the threat actor accessed any additional information or systems.”
A reporter at SecurityWeek, a cybersecurity publication, says that BlackCat indicated on its leak website that it had Prudential data and that Prudential had refused to pay a ransom.
Prudential declined to provide more information than what it put in the SEC notice.
What it means: It might be a good time to update your software and change your passwords.
Ransomware group: The ALPHV/BlackCat attracted U.S. investigators’ attention in 2022, according to the U.S. Justice Department.