Cyber Incident Victim: Seguros Equinoccial S.A.
Date:
Jan 2023
Location:
Ecuador
Summary
Seguros Equinoccial S.A., an insurance provider offering life, auto, and corporate coverage, experienced a data breach involving customer information leaked by the Vice Society ransomware group. The compromised data included personal and policy details such as names, identification numbers, addresses, contact information, and vehicle-specific records like chassis numbers and license plates, found within multiple Excel files. The company has not publicly acknowledged the incident or responded to inquiries, leaving uncertainty regarding customer notifications. The breach exposed sensitive information affecting individuals, families, and businesses insured by the firm, though the full scope and confirmation of the attack remain unverified due to the absence of proof or official statements.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On or around January 28, 2023, ransomware group Vice Society added data allegedly stolen from Seguros Equinoccial S.A. to their leak site. Seguros Equinoccial, an insurance provider offering life, auto, corporate, and other insurance plans to individuals, families, and businesses, had a folder labeled "bck" exposed in the leak. This folder contained 25 Excel files with extensive customer and policy details, including fields such as Name, Surname, Policy number, ID or Ruc (tax identification number), Name of the Insured, Address, Phone, Mail, Chassis number, Make, Model, Plates, Engine details, Color, and Sum Insured. The presence of these fields indicated compromise of records covering both individual and corporate insurance clients. No additional technical details regarding the attack vector, duration of network access, or encryption demands were disclosed by Vice Society in their leak site entry.
DataBreaches.net attempted to verify the incident through email inquiries sent to Seguros Equinoccial on January 30 and February 2, 2023, but received no response. The company’s website displayed no public notice acknowledging a cybersecurity incident or data breach as of the article’s publication date on February 2. Examination of the leaked data suggested unauthorized acquisition and publication of customer information, though the total number of affected individuals or businesses remained unconfirmed. There was no evidence in the source material indicating whether Seguros Equinoccial had initiated customer notifications, engaged law enforcement, or implemented containment measures. The incident exposed policyholders to potential identity theft, fraud, and harassment due to the sensitive nature of the leaked identifiers, contact details, and asset information tied to insurance policies. Vice Society’s history of ransomware operations suggested the possibility of prior network encryption preceding the data leak, though no explicit confirmation of encryption or ransom demands was documented in the available report.