Aflac Japan Cyberattack Compromises Customer Data
Aflac Life Insurance Japan has disclosed a cyberattack on its policyholder portal that exposed personal data of about 4.38 million customers. Reporting indicates unauthorised access occurred between 15 and 25 June, the incident has been reported to Japanese authorities, and customer notification is underway. The attack vector, threat actor, compromised data fields, and any ransomware or business-interruption component have not been publicly confirmed.
AI-generated from linked source reports. See our correction policy.
Impact verdict
Medium impact. The confirmed compromise of approximately 4.38 million customer records at a major Japanese insurer supports a credible loss pathway through first-party cyber response costs, customer notification, forensic work, regulatory engagement, and potential third-party privacy liability. Public reporting also indicates a defined access window and regulatory disclosure, reinforcing event credibility. The impact band remains MEDIUM because no insured loss figure, extortion demand, or quantified operational outage has been disclosed, and the public record does not yet establish a credible route above USD 1bn.
View assessment methodologyPremium discovery tier
Unlock analyst briefs, intelligence depth, and the revision timeline
Public pages show event facts and a short lead-in. Premium accounts unlock analyst briefs, deeper intelligence, loss context, and the full revision history for this event.
Start two-week trialGeographic Zone Matches
1 active match
- Pacific Ring of FireRule-basedConfidence 100%
Geographic zone matches are RiskEvents spatial/analytical indicators, not coverage determinations or Lloyd's official classifications.
Affected countries
Lloyd's classifications
Tracking this kind of risk? Get an email when Cyber events escalate.
Get alerts