Cyber Attack

International Insurer VUMI Group Allegedly Breached, 300K Policyholders and 25K Staff Exposed With SSNs, Passports, and W-9 Forms

DarkWebInformer
International Insurer VUMI Group Allegedly Breached, 300K Policyholders and 25K Staff Exposed With SSNs, Passports, and W-9 Forms
A threat actor calling themselves bytetobreach claims to have breached VUMI Group, an international health and life insurer, exfiltrating data over six days. The actor says roughly 300,000 policyholders and 25,000+ staff, partners, and agents were exposed, including SSNs, passport scans, W-9 forms, and full PII, with the data shared via OwnCloud; #bytetobreach #VUMIGroup

Keypoints

  • bytetobreach claims a targeted breach of VUMI Group, an international health and life insurer.
  • Approximately 300,000 insured clients and over 25,000 staff, partners, and agents were reportedly exposed.
  • Compromised records include Social Security numbers, scanned passports, W-9 tax forms, insurance policy data, and complete PII.
  • The actor provided a documented attack chain and proof screenshots showing vulnerability discovery, exploit delivery, database enumeration, and exfiltration over six days.
  • Stolen data is being distributed via OwnCloud with backup links and contact requested via Session or Signal, creating high risk of identity, travel, and tax fraud.
DarkWebInformer.com Providing intel from some of the darkest places on the Dark Web & Clearnet. Breaches, Darknet Markets, Ransomware, Threat Alerts, & more!

Read More: https://darkwebinformer.com/international-insurer-vumi-group-allegedly-breached-300k-policyholders-and-25k-staff-exposed-with-ssns-passports-and-w-9-forms/