1. Aon was hit with cyberattack
Reprints
After years of helping to protect its clients against cyberattacks, Aon PLC said in a filing with the U.S. Securities and Exchange Commission in February that it was investigating an attack against some of its own systems.
After Aon identified the incident, it brought in third-party advisers, incident response experts and legal counsel to address the issue, the filing said.
Aon said the incident did not have “a significant impact” on the company’s operations.
The story detailing Aon’s disclosure to the SEC was the most read risk management-related story on Business Insurance’s website in 2022.
About 145,000 individuals were affected by the intrusion in Aon’s systems, later court filings said.
The victims were informed on May 27, according to lawsuits filed against Aon. The data breach notice sent to those affected indicated Aon reported the incident to law enforcement authorities, including the FBI, according to the lawsuits.
The notice said Aon had taken measures to prevent a similar occurrence in the future, including enhancing the security of its network, systems and data.
Aon was not the only insurance-related organization with concerns over cyberattacks last year. In October, Lloyd’s of London said an investigation into a possible cyberattack on its network services had found no evidence of data compromise.
“The investigation has concluded that no evidence of any compromise was found and as such Lloyd’s has been advised that its network services can now be restored,” a company spokesman said in an email.
