On the 27th, the Financial Supervisory Service reported that signs of hacking incidents were detected at two large corporate insurance agencies (GAs), including one GA. An investigation is currently underway to determine whether customer information has been leaked.
According to FSS, this hacking incident is presumed to have occurred at an IT service company responsible for supporting insurance sales, and the Financial Security Agency is conducting investigations and analysis of the breach.
FSS has instructed the relevant GAs to take measures to prevent the spread of damage, such as system separation and blocking, and directed that reporting procedures to the appropriate authorities be undertaken. Additionally, if the leakage of customer information is ultimately confirmed, they are required to prepare in advance to promptly notify customers.
Furthermore, FSS has directed all GAs and insurance companies to conduct self-inspections for security vulnerabilities and to delete unnecessary customer information.
If a leakage of customer information is confirmed, FSS plans to establish a comprehensive consultation center in collaboration with the Life Insurance Association and the General Insurance Association to support the receipt of secondary damage reports and provide information on related systems. They also intend to establish and implement measures to prevent recurrence as soon as the cause of the incident is clearly identified.