AON, leading professional services and insurance company has suffered a cyberattack that has affected its systems.
AON is a multinational professional services firm offering a variety of solutions including corporate insurance, reinsurance, cybersecurity consulting, risk solutions, medical insurance, and asset management products.
AON has revenues of $12.2 billion in 2021, with approximately 50,000 employees spread across 120 countries.
In its Form 8-K filed with the U.S. Securities and Exchange Commission, AON disclosed that it suffered a cyber attack on February 25, 2022.
AON has not provided any details of the attack other than that it affected a limited number of systems.
On February 25, 2022, Aon plc identified a cyber incident affecting a limited number of systems. After identifying this incident, we immediately began an investigation and engaged the services of third-party advisors, incident response specialists, and legal counsel. The incident has not had a material impact on our operations
We are in the early stages of evaluating this incident, but based on the information currently known to us, we do not believe this incident will have a material impact on our business, operations, or financial condition.
AON is both an insurance broker and a major reinsurance company.
This makes AON an attractive target for threat actors who typically steal corporate data in cyber attacks.
In an interview with the ransomware group REvil, the threat actor said that insurance companies provide a list of targets likely to pay ransom because they have cyber insurance and are “one of the most delicious foods.”
Insurance giant CNA was the target of a ransomware attack by cybercrime syndicate Evil Corp in 2021. They reportedly paid a $40 million ransom to receive a decryption key and prevent the exfiltration of stolen data.
Comments