ADVERTISEMENT

NAIC confirms breach as ShinyHunters dumps 3.1TB tied to national insurance systems

The National Association of Insurance Commissioners (NAIC) on Thursday confirmed data was stolen during a recent Oracle zero-day attack earlier this month – all as the notorious ShinyHunters dumps a 3.1TB cache it says is tied to the regulatory body's systems used across the US insurance industry.

National Association of Insurance Commissioners

National Association of Insurance Commissioners (NAIC) via X

Stefanie Schappert
Stefanie Schappert Senior Journalist
Jun 26, 2026 3 min read
Key takeaways:
National Association of Insurance Commissioners breach notice
NAIC, which first reported the breach on June 17th, says stolen data was posted online by a threat group. naic.org

Why the breach matters

Insurance hack
The insurance industry is classified as US critical infrastructure. Image by Golden Dayz | Shutterstock

What data was compromised?

ShinyHunters National Association of Insurance Commissioners
hinyHunters says it revised its analysis of the alleged NAIC data dump. Image by Cybernews
ADVERTISEMENT
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.
  • More than 264,000 insurer regulatory filing PDFs spanning property, casualty, health, and life insurance companies between 2017 and 2024.
  • Around 2,000 customer and bulk order records containing names, email addresses, and payment transaction identifiers.
  • Approximately 45,000 files from major credit rating agencies, including Moody's, Fitch, S&P, Kroll, DBRS, AM Best, Egan-Jones, and HR Ratings.
  • Statutory annual and quarterly financial statements submitted by insurers.
  • Production AWS infrastructure logs, cloud configuration files, and workload automation data.
  • SQL scripts and what researchers described as stored credentials tied to production environments associated with SERFF, OPTins, and UCAA.

More than just insurance filings

ShinyHunters National Association of Insurance Commissioners breach index
Directory listings appear to reference cloud configurations and production backups. ShinyHunters leak site. Image by Cybernews

Has your password leaked?

Enter your password to check if it has leaked. Having a leaked password creates the risk of identity theft, financial damages, and worse!
35,607,543,468
Exposed Passwords
Ad
Protect your personal information from cybercriminals and get 50% off the top-rated password manager
link_title link_title

ADVERTISEMENT