Chubb, the largest commercial insurer in the United States, is investigating a possible cyberattack that involved unauthorized access to data held by a third-party service provider, according to Carrier Management. There is no evidence that the incident affected Chubb's network, and the insurer continues to handle all policyholder requests at this time.
Meanwhile, Chubb is working with law enforcement and a cybersecurity firm as part of its investigation, Carrier Management reported. The Chubb security incident also may have involved Maze ransomware, Brett Callow, a threat analyst at web security provider Emsisoft, told news media.
A Closer Look at Maze
Maze ransomware attacks began affecting U.S. organizations in November, according to the FBI. At that time, the FBI issued a security advisory to U.S. organizations about Maze cyberattacks.
Hackers have used Maze to launch malspam campaigns impersonating government agencies and well-known security vendors and other intrusion methods to penetrate devices, systems and networks, the FBI indicated. Furthermore, Maze hackers can exfiltrate files before they encrypt connected devices, systems and networks.
How to Guard Against Ransomware Attacks
The FBI recently offered tips to help organizations guard against ransomware attacks, including:
- Back up data regular and work with verified backups.
- Keep software and operating systems up to date.
- Use two-factor authentication and strong passwords.
- Scan for open or listening network ports and block them.
- Monitor Active Directory and administrator group changes to prevent unauthorized access.
MSSPs also can help organizations guard against ransomware attacks. They can stay informed about Maze and other ransomware strains, as well as provide security services to help organizations combat current and evolving cyber threats.