Cyber Incident Victim: La Segunda Seguros

On or around February 21, 2023, LockBit ransomware group publicly listed La Segunda Seguros insurance company on its dedicated leak site. The listing included samples of data allegedly exfiltrated during the attack, presented as proof of the group’s claims. Among these samples was a file containing sensitive personal information, including a medical opinion and details related to a work-related injury. La Segunda Seguros, a provider of multiple insurance products, did not issue a public acknowledgment of the incident through its official website or social media platforms following LockBit’s disclosure. DataBreaches.net contacted the company via email on February 21 seeking confirmation of the attack and awareness of the data leak, but no response was received. The precise timeline of the intrusion, methods of initial access, scope of affected systems, and volume of impacted data beyond the demonstrated samples remain undisclosed in available source material.

The incident exposed the potential compromise of personal and medical information tied to insurance services, raising concerns about data privacy violations. LockBit’s publication of samples indicated the attackers possessed records with identifiable health-related details, though the full extent of data accessed or stolen was not specified. No further updates regarding negotiation between the threat actors and La Segunda Seguros, ransom demands, or data decryption attempts were reported in the examined source. Essential operational consequences, such as service disruptions at La Segunda Seguros, were likewise not described. The absence of public notifications from the company and its non-response to external inquiries characterized its known reaction to the breach. LockBit maintained the listing on its leak site, implying the group intended to pressure the victim via threats of data exposure, but no subsequent leaks, payments, or resolution announcements were documented within the provided evidence.