NAIC confirms data breach, ShinyHunters claims 3.1TB stolen

The National Association of Insurance Commissioners confirmed a cyberattack exploiting an Oracle PeopleSoft zero-day. ShinyHunters claimed theft of 3.1TB of data including insurer filings, credit rating files, AWS logs, and PII. The incident was spotted June 11 and disclosed June 17.