Commercial lines insurer CNA reported that it has sustained a “sophisticated cybersecurity attack” that caused a network disruption and impacted certain CNA systems, including corporate email.
Upon learning of the incident on March 21, the insurer said it immediately engaged forensic experts to investigate and determine the full scope of this incident. That investigation is ongoing.
“We have alerted law enforcement and will be cooperating with them as they conduct their own investigation,” the company added in a statement.
As a precaution, CNA said it disconnected its systems from its network and provided workarounds where possible to ensure employees can continue operating and serving policyholders.
“The security of our data and that of our insureds’ and other stakeholders is of the utmost importance to us. Should we determine that this incident impacted our insureds’ or policyholders’ data, we’ll notify those parties directly,” the company said.
On Thursday, a company spokesperson said the company had no new information to share.
Was this article valuable?
Here are more articles you may enjoy.