The individuals impacted by the situation at hand encompass both present and past personnel as well as patrons.
HUB, an insurance brokerage organisation, has recently disclosed a cyber breach primarily impacting its operations in the United States. The breach has the potential to damage both past and present employees, as well as clients of the firm.
HUB International, the parent company of HUB, has released a statement to Insurance Business, providing revised details regarding the cyber incident.
The purpose of this inquiry is to ascertain the details surrounding the Hub data breach incident.
According to the broker, on January 17, 2023, HUB detected anomalous behaviour on specific systems within its network. As a reaction, the company implemented measures to segregate the compromised systems and initiated a comprehensive forensic examination.According to Hub, it has been determined during the inquiry that an unidentified party illicitly gained access to specific segments of HUB’s network and proceeded to duplicate files without the explicit consent of the organisation. This unauthorised activity took place over the period spanning from December 2022 to January 2023. Consequently, the organisation conducted an examination of the data that was accessed in order to ascertain its contents and the individuals to whom it pertains. The study was finished and the notification procedure commenced on July 27, 2023.
According to the findings of HUB, the cyber event had an impact on both present and past workers, individuals for whom HUB acts as an insurance intermediary, as well as individuals associated with insurance carriers and employers that get services from HUB.
The data that was obtained consisted of individuals’ names, social security numbers, driver’s licence numbers, passport numbers, financial account details, health insurance particulars, and medical records.
According to the statement provided by HUB, the review and notification procedures are currently under progress. HUB is actively issuing pertinent notices as new information becomes accessible. Additionally, HUB has affirmed that Canadian clients have had only minimal consequences.
The response of HUB to the cyber incident.
Following the detection of the breach, HUB has taken measures to enhance the security of its systems, conducted a comprehensive investigation into the extent of the cyber incident, and duly informed law enforcement authorities.
Amidst the ongoing investigation and response to the cyber event, HUB has announced its provision of monitoring services via Equifax, as well as the establishment of a call centre. The call centre aims to address customer inquiries and facilitate their access to the aforementioned monitoring services.
The brokerage group has implemented supplementary security measures and is actively assessing its policies, procedures, and technical security measures to enhance the protection of information stored within its systems.
The HUB sent a reminder to individuals who have been impacted to remain vigilant for any signs of unusual activity, such as instances of identity theft and fraudulent behaviour. Additionally, it is recommended that users thoroughly examine their account statements and diligently check their complimentary credit reports in order to identify any potentially fraudulent activity and identify any inaccuracies.