The Insurance Industry Under Fire: Anatomy of the Aflac Cyber Incident

In this episode, we take a deep dive into the June 2025 cyberattack on Aflac, one of the latest strikes in a growing wave of sophisticated, AI-driven cyber campaigns targeting the insurance industry. On June 12, Aflac detected suspicious activity within its U.S. network—a breach attributed to a highly organized cybercrime group and part of a larger pattern of targeted attacks against financial and insurance providers.

Our discussion goes beyond Aflac’s rapid response to explore the broader cybersecurity landscape of 2024-2025: a time marked by an explosion in third-party supply chain vulnerabilities, the resurgence of ransomware, and the growing use of AI-powered phishing and polymorphic malware. We examine how ransomware payloads are evolving to evade detection, why SMBs and mid-market firms are increasingly in the crosshairs, and how credential theft and sophisticated phishing are driving the majority of breaches.

We also break down:

• How real-world cases like Marks & Spencer, Victoria’s Secret, and UNFI show the cascading impacts of third-party risks.
• The strategic importance of Zero Trust and proactive supply chain management.
• What companies can learn from the Aflac incident about preparing for coordinated industry-specific campaigns.
• Practical steps organizations can take today—layered defenses, threat monitoring, employee training, and incident response planning—to build resilience in this new threat environment.

If you want to understand the tactics modern attackers are using—and what your organization can do about it—don’t miss this episode.