Guard.me, a student health insurance company, experienced a data breach incident last week affecting the PII of its customers. The platform realized the unauthorized access by a threat actor on May 12 and took the website offline immediately. After addressing the concerning vulnerability, Guard.me is informing its customers (students) about the incident. Also, it claims to have strengthened security.
Guard.me Suffered Data Breach
Guard.me, a health insurance carrier for students traveling abroad or staying in other countries for education, disclosed a data breach incident to its customers. Last week on May 12th, the platform has taken its website offline after realizing unauthorized access. People visiting the website were redirected to a maintenance page showing the following statement;
“Recent suspicious activity was directed at the Guard.my website, and in an abundance of caution, we immediately took down the site. Our IS and IT teams are reviewing measures to ensure the site has enhanced security to return the site to full service as quickly as possible.“
May the incident investigation was done, the platform now started notifying the customers (students) about the data breach. It read as;
“In the late evening of May 12, 2021, our Information Systems team discovered unusual activity on our website and as a precaution, they immediately took down the website and took immediate steps to secure our systems. The vulnerability has been addressed. Our experts are diligently investigating the matter further.”
While it claims to have patched the vulnerability, it didn’t reveal what it was exactly. The data impacted in the breach include the students’ genders, dates of birth, and encrypted passwords. Also, the phone numbers, email, and mailing addresses of some students too were accessed.
While the identity of said threat actor wasn’t known, guard. They have strengthened the security practices like using 2FA and database segmentation to avoid future attacks.