Cyber Incident Victim: Arthur J. Gallagher & Co.

On September 26, 2020, international insurance brokerage firm Arthur J. Gallagher & Co. experienced a ransomware attack targeting its internal systems. The company publicly confirmed the cybersecurity incident, identifying it as a ransomware operation that disrupted a subset of its infrastructure. The attack prompted an immediate response from the firm’s internal teams to contain the breach and assess its scope. Arthur J. Gallagher characterized the compromised systems as a “limited portion” of its overall network infrastructure, indicating that core business operations remained largely unaffected. No specific details were disclosed regarding the ransomware variant used, the initial attack vector, or whether data exfiltration occurred prior to encryption. The company did not report any immediate service disruptions to clients or external partners resulting from the incident.

Arthur J. Gallagher stated the attack did not materially impact its business operations or financial condition, suggesting effective containment measures limited systemic damage. The firm did not disclose whether it engaged with threat actors, paid a ransom, or relied solely on internal recovery processes. No customer data breaches or third-party system compromises were reported in connection with the incident. The company’s public communications emphasized operational continuity while acknowledging ongoing remediation efforts for affected internal systems. No regulatory filings or subsequent updates elaborated on forensic findings, threat actor attribution, or specific recovery timelines beyond the initial confirmation. The incident marked a confirmed cybersecurity event for the global insurance broker but did not trigger significant financial disclosures or operational restructuring announcements.