Major U.S. insurance provider Allianz Life Insurance Company confirmed on Saturday that hackers compromised the personal information of the “majority” of its 1.4 million customers following a sophisticated cyberattack on July 16, 2025.

The breach, disclosed in a mandatory filing with Maine’s attorney general, targeted a third-party, cloud-based customer relationship management (CRM) system used by the Minneapolis-based insurer.

According to company spokesperson Brett Weinberg, the attackers employed social engineering techniques to gain unauthorized access to personally identifiable information belonging to customers, financial professionals, and select Allianz Life employees.

Sophisticated Attack Methods

Social engineering attacks manipulate human psychology rather than exploiting technical vulnerabilities, making them increasingly effective against modern security systems.

These attacks typically involve criminals impersonating trusted entities to trick employees into providing access credentials or sensitive information.

The July 16 incident was discovered the following day, prompting Allianz Life to notify the FBI and initiate containment measures immediately.

The company emphasized that its investigation found “no evidence” that other systems on its network were compromised, including the critical policy administration system with Maine’s attorney general.

This breach represents the latest in a wave of cyberattacks devastating the U.S. insurance sector throughout 2025. Security researchers at Google have identified breaches in the insurance industry by Scattered Spider, a notorious hacking collective known for sophisticated social engineering campaigns.

Scattered Spider, also tracked as UNC3944 and Octo Tempest, consists primarily of English-speaking teenagers and young adults from the United States and the United Kingdom. The group has previously targeted major companies, including MGM Resorts and Caesars Entertainment, and has recently shifted its focus to systematically attacking insurance providers.

Prior to targeting insurers, Scattered Spider was linked to attacks against U.K. retailers, including Marks & Spencer, as well as aviation and transportation companies. The group’s tactics typically involve calling company help desks, impersonating employees, and manipulating staff into resetting passwords or providing system access.

Under Maine’s data breach notification law, Allianz Life must notify affected individuals within 30 days of discovering the breach’s scope. The company plans to begin customer notifications around August 1, 2025.

Allianz Life, a subsidiary of German financial giant Allianz SE, provides annuities and life insurance products across all U.S. states except New York. The parent company serves over 125 million customers globally and is among the world’s largest insurers.

The cyber insurance market, valued at $16.3 billion in 2025, continues expanding as organizations face increasingly sophisticated threats. This incident underscores the critical need for enhanced cybersecurity measures across the insurance industry, particularly given insurers’ vast repositories of sensitive customer data.

The investigation remains ongoing, with Allianz Life working closely with federal authorities to determine the full extent of the breach and prevent future incidents.