Allianz Life also recently disclosed a significant data breach that occurred in mid-July. Hackers were able to gain access to the personal information of all its financial professional customers and employees. The company reported the breach in a notice filing with Maine’s attorney general, posted late Saturday.
Today’s case Cyberattack on a customer relationship management (CRM) database. This breach left private data of Allianz Life’s customers and employees vulnerable to cybercriminals. The attackers, known as Scattered Spider, used social engineering tactics to obtain access to the cloud-based customer relationship management (CRM) platform.
On July 16, 2025, a malicious threat actor exploited a vulnerability in a third-party cloud-based CRM system that Allianz Life makes use of. We found out all this through Fast Company courtesy of Brett Weinberg, a company spokesperson. He noted that the threat actor gained entry to personally identifiable information for all Allianz Life customers, financial professionals, and some employees. They were able to accomplish this by leveraging a sophisticated social engineering technique.
In its release, Allianz Life does not admit that personal data has been stolen. They have not yet stated how many customers will be impacted. The firm expects to start notifying those affected by the breach starting on August 1.
Scattered Spider has a notable history of targeting the U.K. retail sector, as well as aviation and transportation sectors. The group is perhaps best known for its subsequent cyberhacks against major tech companies across Silicon Valley.
As a result of the breach Allianz Life will be taking steps to further strengthen the companies cybersecurity practices and help avoid future breaches. As part of its corporate mission, the company touts its dedication to protecting consumers’ personal information and earning their trust.
