Massive Data Breach at NTT DATA Americas Exposes Standard Insurance Customers’ Personal Details

In a recent incident, the personal details of Standard Insurance customers were exposed in a data breach. The breach occurred on servers belonging to PBI Research Services, a company processing data for Standard Insurance, and was being hosted by NTT DATA Americas. This breach has impacted over 300,000 individuals, highlighting the urgent need for stronger cybersecurity measures.

Impact and exposure

The attacker gained unauthorized access to Standard Insurance data through the MOVEit Transfer service used by PBI Research Services. NTT DATA Americas, the subsidiary of the Japanese multinational IT company NTT DATA, has informed affected individuals about the breach. According to information disclosed to the Maine Attorney General, approximately 308,072 people had their personal details compromised in this attack.

Risks of Social Security Number (SSN) exposure

The compromised personal details include names and Social Security numbers (SSNs). The exposure of SSNs poses significant risks as the stolen data can be used by impersonators for identity theft. Combined with names and driver’s license numbers, stolen SSNs provide the necessary ammunition for criminals to commit various forms of fraud, including financial and medical identity theft. This breach underscores the critical importance of protecting such sensitive information.

Role of PBI Research Services

PBI Research Services, a US-based population management solutions provider, was exposed to this attack due to the utilization of the MOVEit Transfer service. This platform served as the entry point for the malicious actors to gain unauthorized access to the data processed for Standard Insurance. The incident emphasizes the need for organizations to conduct thorough risk assessments and ensure the security of third-party services they rely on.

NTT DATA Americas: A Major IT Player

NTT DATA Americas, a subsidiary of the Japanese multinational IT company NTT DATA, plays a crucial role in the incident. With over 139,000 employees and revenues exceeding $30 billion, NTT DATA is a major player in the global technology industry. However, this breach raises concerns about the company’s security protocols and highlights the importance of implementing robust cybersecurity measures.

Scope of MOVEit Transfer attacks

The MOVEit Transfer attacks have caused widespread damage. Over 980 organizations and nearly 60 million individuals have been confirmed to be impacted by these attacks. The ransomware gang Cl0p has claimed responsibility for these breaches, targeting various sectors and industries. This extensive scale of the attacks reveals the urgent need for enhanced cybersecurity practices and vigilance in the face of evolving threats.

Other affected organizations

Standard Insurance is not the only organization affected by the MOVEit Transfer attacks. Numerous well-known companies, including TD Ameritrade and American Airlines, have had their clients’ personal data exposed in this breach. The significant list of targeted entities also includes TJX, TomTom, Pioneer Electronics, and AMC Theatres. These incidents highlight the importance of organizations, irrespective of their size or industry, prioritizing cybersecurity as a foundational element of their operations.

The massive data breach at NTT DATA Americas, impacting Standard Insurance customers, serves as a wake-up call for organizations around the world. The exposure of personal details, including Social Security numbers, underscores the severe risks posed by such incidents. It is crucial for businesses to invest in robust cybersecurity measures, conduct regular risk assessments, and ensure the security of their third-party service providers. This incident highlights the need for heightened vigilance and comprehensive security protocols to protect sensitive personal information from falling into the wrong hands.

Explore more

Can Federal Lands Power the Future of AI Infrastructure?

I’m thrilled to sit down with Dominic Jainy, an esteemed IT professional whose deep knowledge of artificial intelligence, machine learning, and blockchain offers a unique perspective on the intersection of technology and federal policy. Today, we’re diving into the US Department of Energy’s ambitious plan to develop a data center at the Savannah River Site in South Carolina. Our conversation

Can Your Mouse Secretly Eavesdrop on Conversations?

In an age where technology permeates every aspect of daily life, the notion that a seemingly harmless device like a computer mouse could pose a privacy threat is startling, raising urgent questions about the security of modern hardware. Picture a high-end optical mouse, designed for precision in gaming or design work, sitting quietly on a desk. What if this device,

Building the Case for EDI in Dynamics 365 Efficiency

In today’s fast-paced business environment, organizations leveraging Microsoft Dynamics 365 Finance & Supply Chain Management (F&SCM) are increasingly faced with the challenge of optimizing their operations to stay competitive, especially when manual processes slow down critical workflows like order processing and invoicing, which can severely impact efficiency. The inefficiencies stemming from outdated methods not only drain resources but also risk

Structured Data Boosts AI Snippets and Search Visibility

In the fast-paced digital arena where search engines are increasingly powered by artificial intelligence, standing out amidst the vast online content is a formidable challenge for any website. AI-driven systems like ChatGPT, Perplexity, and Google AI Mode are redefining how information is retrieved and presented to users, moving beyond traditional keyword searches to dynamic, conversational summaries. At the heart of

How Is Oracle Boosting Cloud Power with AMD and Nvidia?

In an era where artificial intelligence is reshaping industries at an unprecedented pace, the demand for robust cloud infrastructure has never been more critical, and Oracle is stepping up to meet this challenge head-on with strategic alliances that promise to redefine its position in the market. As enterprises increasingly rely on AI-driven solutions for everything from data analytics to generative