POST Online Media Lite Edition


Colorado Bankers Life Insurance hit by cyber atack, no data compromised

Staff Writer |
On June 20, 2018, Colorado Bankers Life Insurance Company (CBLife) completed its investigation of a data security incident that involved a targeted phishing attack that compromised some of its employees' cloud-based email accounts.

Article continues below

Upon discovery, CBLife secured employee email accounts, changed account settings to enhance security, and engaged a leading cyber security firm to assist with the investigation.

CBLife undertook comprehensive review of the emails and attachments in the email accounts and determined that personal information existed pertaining to CBLife employees, producers, advisors, and policyholders.

This information varies among individuals, but includes names along with one or more of the following: Social Security number, driver's license number, passport number, financial account information, financial account numbers, medical information, and online account credentials.

The investigation confirmed that CBLife's internal network and systems were not affected.

To date, CBLife is not aware of any misuse of the information or any other criminal activity as a result of the phishing attack. However, out of an abundance of caution, CBLife will begin mailing letters to the potentially affected individuals on August 3, 2018.

For additional information about this incident, please visit CBLife's website: CBLife is offering eligible individuals one year of credit monitoring and identify theft restoration services.

To help prevent a similar incident from occurring in the future, CBLife has extensive training to its employees regarding phishing emails and other cybersecurity issues.

In addition, CBLife has enhanced existing security measures by implementing multi-factor authentication for email.

What to read next

India's HDFC Life sets price range for $1.34 billion IPO
CBA to sell life insurance unit to AIA Group for $3 billion
SunTrust Banks warns 1.5 million clients of potential data theft