Aflac Japan Suffers Data Breach, Personal and Bank Information Stolen
Insurance giant Aflac disclosed a data breach impacting its Japanese subsidiary, where attackers accessed systems and stole sensitive personal and financial data.
American insurance giant Aflac has announced a significant data breach affecting its Japanese subsidiary, Aflac Life Insurance Japan Ltd. The incident, discovered on June 25, 2026, involved unauthorized third-party access to the subsidiary's systems between June 15 and June 25, 2026. This breach resulted in the theft of personal information and bank account details, prompting Aflac to alert Japanese authorities and prepare notifications for affected individuals.
Upon detecting the intrusion, Aflac Japan implemented immediate containment measures, including the suspension of certain systems, to prevent further unauthorized access. Despite these actions, the investigation is ongoing, with external cybersecurity experts assisting in determining the full scope and impact of the incident. The company has assured policyholders that services continue to be provided during the response.
The compromised data includes policy and coverage details, alongside personal information and bank account information. While the investigation is still underway, Aflac Japan has confirmed that certain impacted files contained this sensitive data. The company has formally notified the Japan Financial Services Agency and other relevant regulatory bodies, adhering to protocols for data breach disclosures.
Aflac has emphasized that this incident is strictly confined to systems within its Japanese operations. Crucially, the company has stated that its systems related to its U.S. business were not accessed by the threat actors. The full extent of the breach's impact on the company's overall operations and financial standing is still being assessed.
This incident follows a previous data breach disclosed by Aflac approximately one year ago, which occurred amidst a broader wave of attacks targeting insurance companies across the United States. While the specifics of that earlier breach were not definitively attributed, it bore hallmarks of attacks by the Scattered Spider threat group, known for its involvement in numerous high-profile breaches.
Scattered Spider, also tracked under various aliases including 0ktapus and UNC3944, has been linked to other significant breaches within the insurance sector, such as those affecting Erie Insurance and Philadelphia Insurance Companies (PHLY). The group has a history of collaborating with ransomware operations like Qilin and RansomHub, and its victim list includes major corporations across various industries, including MGM Resorts, Caesars, and Coinbase.
The current breach at Aflac Japan underscores the persistent threat landscape faced by the financial and insurance sectors. The theft of personal and bank account information poses significant risks to individuals, including identity theft and financial fraud. The ongoing nature of such attacks highlights the need for continuous vigilance and robust security measures across global subsidiaries.
As the investigation progresses, Aflac Japan is expected to provide further details regarding the breach and the specific measures being taken to protect affected individuals. The incident serves as a stark reminder of the interconnectedness of global business operations and the critical importance of securing subsidiary networks against sophisticated cyber threats.
The latest report from SecurityWeek indicates that the breach at Aflac Japan, which began on June 15th, affected approximately 4.38 million policyholders. While the initial disclosure mentioned the theft of sensitive personal and financial data, the full scope of information accessed by hackers during their multiple intrusions into the policyholder portal between June 15 and June 25 is still under active investigation.