Australian insurance provider Prosura has confirmed it is responding to a Prosura cyber attack that affected parts of its systems and led to some customers receiving fraudulent emails related to their policies. The company has taken immediate action to secure its environment and prevent further incidents.
Prosura said it identified unauthorised access on Saturday and, as a precaution, temporarily disabled online services including policy purchase, claim submission, and account management through its self-service portal. These measures are aimed at containing the breach while cybersecurity experts investigate the scope and source of the attack.
Personal and Policy Data Potentially Exposed
The insurer stated that the Prosura cyber attack may have compromised customer information such as names, email addresses, phone numbers, country of residence, travel destinations, invoicing and pricing details, and policy start and end dates. Claim-related data may also have been exposed, including driving licences and associated images.
Prosura emphasised that there is no indication that payment information, such as credit card details, was accessed. The company does not store credit card information in its systems, reducing the risk of financial theft.
Security specialists are assisting in the investigation, and Prosura is working to ensure that systems are secured and that services can be safely restored. The company stated that it is treating the incident with the highest priority to protect customer data and maintain trust.
Guidance for Customers
Customers are advised to remain vigilant following the Prosura cyber attack and take precautions to protect their information. Prosura recommended not responding to any suspicious emails, avoiding contact with third-party addresses mentioned in fraudulent messages, and not clicking on links or opening attachments in unexpected emails.
The insurer said it will continue to monitor its systems and provide updates as the investigation progresses. It also plans to implement additional security measures to prevent similar incidents in the future.
This cyber incident highlights the risks facing insurance providers and other companies that manage sensitive personal and policy-related data. Experts note that attackers often target email communication channels to exploit customers, gain access to systems, and steal information for fraudulent purposes.
Prosura’s response reflects a growing trend among organisations to act quickly in the event of a breach, including temporarily disabling online services, consulting cybersecurity specialists, and issuing guidance to affected customers. Such steps are critical in limiting the impact of the Prosura cyber attack and reducing the risk of further exposure.
Customers are encouraged to review their communications carefully, verify the authenticity of any emails, and report suspicious messages. Organisations across the insurance sector are likely to increase monitoring and adopt stricter controls to safeguard sensitive customer data following incidents like this.
The attack serves as a reminder of the importance of cybersecurity readiness, robust incident response plans, and customer awareness in defending against evolving cyber threats targeting personal, financial, and policy-related information.
Prosura continues to work closely with cybersecurity teams to investigate the Prosura cyber attack, secure its systems, and restore full service functionality while maintaining transparency and providing guidance to its customers.
