Cyber Incident Victim: Aon

Aon PLC disclosed a cybersecurity incident affecting its systems on February 25, 2022, amid heightened global concerns about cyberattacks targeting corporations. The London-based professional services firm confirmed the event disrupted portions of its IT infrastructure but did not specify the operational scope or business units affected. Upon detecting the incident, Aon initiated its incident response protocols, engaging third-party cybersecurity experts to assist with forensic analysis and containment measures. The company notified law enforcement agencies and relevant regulatory bodies in accordance with legal obligations, though it did not publicly identify specific jurisdictions or regulators involved. No details were provided regarding the attack vector, threat actor affiliation, or potential data compromise during the initial disclosure. Aon emphasized its systems were "operational" while continuing remediation efforts, suggesting partial service continuity during the response phase.

The company maintained its investigation was ongoing to determine the full extent of the incident's impact on clients and internal operations. Aon did not disclose whether client data was exfiltrated or encrypted, nor did it confirm ransomware involvement despite widespread industry speculation about such attacks during this period. Business continuity protocols were activated to minimize service disruptions across risk, reinsurance, and health solutions divisions. External cybersecurity consultants collaborated with internal IT teams to restore affected systems and implement additional security controls. The disclosure coincided with increased scrutiny of professional services firms following high-profile attacks on supply chain vulnerabilities in early 2022. Aon committed to providing updates as the investigation progressed but did not establish a public timeline for resolution or further disclosures.