Allianz Life Data Breach Exposes 2.8 Million Customer and Partner Records
A data breach involving Allianz Life has resulted in the leak of 2.8 million records, with threat actors exposing sensitive information related to customers and business partners.
Earlier this month, Allianz Life revealed in a filing with the Maine Attorney General’s Office that hackers had breached a third-party, cloud-based customer relationship management platform it uses. The cyberattack occurred on July 16 and was discovered the following day.
In a statement shared with the media, Allianz confirmed that the attackers used a social engineering tactic to gain unauthorised access and exfiltrated sensitive personal information of customers, financial professionals, and certain employees. The company stressed that the breach was limited to its U.S. operations and did not affect its global network.
“Based on the investigation to date, there is no evidence that internal systems or the broader Allianz network were accessed,” the company stated, adding that its core platforms, including the policy administration system, wasn’t unaffected by the data security incident.
Although Allianz Life declined to name the threat actor behind the attack, the breach is believed to be linked to the ShinyHunters group. In fact, ShinyHunters, along with other threat actors claiming ties to ’Scattered Spider’ and ‘Lapsus$’, created a Telegram channel named ‘ScatteredLapsuSp1d3rHunters’ and publicly took credit for the breach.
🚨 @AllianzLife confirms SSNs, names & more were stolen in a data breach.
— TechNadu (@TechNadu) July 31, 2025
▪️ Social engineering targeted 3rd-party CRM
▪️ Suspected: Scattered Spider or ShinyHunters
▪️ 1.4M customers potentially impacted
▪️ Identity theft risks rising
Full report ➤ https://t.co/j7ciFt2j5N… pic.twitter.com/iOKhlU8xmZ
The group leaked a database stolen from Allianz Life, containing approximately 2.8 million records of individual customers and business partners. The data includes sensitive personal information such as names, addresses, phone numbers, birth dates, and Tax IDs, as well as professional details like licenses, company affiliations, product approvals, and marketing classifications.
According to the perpetrators, ShinyHunters and Scattered Spider are now collaborating. There are also suspected overlaps in personnel with the Lapsus$ group, which was responsible for breaches at companies like Microsoft, Uber, and T-Mobile between 2022 and 2023.
Related Articles
Most Viewed
New rules, rising threats: why lean IT teams must rethink cyber-securitySponsored by CORO CYBER SECURITY
Don’t allow AI experiments to become quiet business risksSponsored by alice.io
The Expert View: Reducing cyber-risk across OT and critical infrastructureSponsored by Claroty
The Expert View: Transforming security through risk intelligenceSponsored by Obrela
Winston House, 3rd Floor, Units 306-309, 2-4 Dollis Park, London, N3 1HF
23-29 Hendon Lane, London, N3 1RT
020 8349 4363
© 2025, Lyonsdown Limited. teiss® is a registered trademark of Lyonsdown Ltd. VAT registration number: 830519543