Japanese insurers report data leak of over 2 million customer records
Learn More
A data leak involving Japan’s four leading property and casualty insurers has been reported to expose the data of 2 to 3 million customers.
The breach primarily involved independent agents, such as car dealerships, that sell insurance products from multiple companies. It was discovered that employees of the insurers, stationed at independent agencies, intentionally leaked contract details from other insurers to their own companies. This was likely done to gain competitive insights into rivals’ sales strategies.
At least nine Sompo Japan employees at independent agencies leaked data on fire insurance contracts bought through regional banks. Agency employees sent internal emails containing sensitive contract information, mistakenly including employees of other insurers as recipients.
The leaked information includes:
- Customer names
- Insurance policy numbers
- Insurance types
- Maturity dates
- Premium amounts
The leak innvolves the following insurance companies:
- Tokio Marine & Nichido Fire Insurance Co.,
- Sompo Japan Insurance Inc.,
- Mitsui Sumitomo Insurance Co.,
- Aioi Nissay Dowa Insurance Co.
The breach has intensified scrutiny over the industry's lax oversight of independent agencies, with many companies failing to recognize these leaks as significant problems. The four insurers disclosed the breach in May and are set to report details to Japan's financial watchdog within the week.
