Cyber Incident Victim: Policybazaar
Date:
Jul 2022
Location:
India
Summary
An Indian insurance portal suffered a data breach involving illegal unauthorized access exploiting system vulnerabilities. The company stated it addressed the vulnerabilities, initiated a system audit, and collaborated with external security advisors, maintaining that no significant customer data exposure was identified during preliminary reviews. The incident coincided with a stock price decline for the parent entity, though the disclosure did not specify compromised data types or affected customer counts. Policybazaar operates an online insurance marketplace disrupting traditional agent-based models and had recently expanded its brokerage capabilities prior to the breach.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 3 motives | 3 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Policybazaar, an Indian online insurance marketplace operated by PB Fintech, experienced a data breach involving unauthorized system access on July 19, 2022. The company disclosed the incident in a public letter on July 24, 2022, confirming exploitation of vulnerabilities within its infrastructure. Policybazaar's internal security team detected the intrusion and engaged external cybersecurity advisors to investigate the breach scope and remediation strategies. Immediate corrective actions included patching the identified vulnerabilities and launching a comprehensive audit of affected systems. The organization stated its preliminary review indicated no significant compromise of customer data but did not specify which datasets were targeted or quantify potential customer impact. No evidence suggested public release of stolen information at the time of disclosure.
Founded in 2008, Policybazaar disrupted India's insurance sector through its digital aggregation model, having facilitated over 19 million policy sales across health, automotive, and other insurance categories. The breach occurred during a strategic expansion phase following PB Fintech's November 2021 stock market debut, where shares initially surged 20% above IPO pricing. Recent regulatory approvals, including a June 2021 IRDAI brokerage license, positioned the company to diversify into claims management and offline services while transitioning from aggregation fees to commission-based revenue. Financial markets reacted to the breach disclosure with PB Fintech shares declining 4.3% from INR 522 to INR 499.70 on July 25, 2022. Policybazaar maintained operational continuity post-incident while continuing system reviews to assess potential data exposure.