French insurance brokerage group AMI 3F has allegedly become the victim of a significant data breach. A threat actor has posted a database on a dark web forum, claiming it contains the sensitive information of 20,000 private and professional customers. The perpetrator released the data, which is divided into two files containing customer and contract details, for download within the cybercriminal community. Based in Toulouse, AMI 3F is a major wholesale insurance broker founded in 1999, operating a national network of thousands of intermediaries, making this a potentially serious incident for its clientele.
The leaked information appears to be extensive and highly sensitive. According to the forum post, the compromised data includes a wide range of personally identifiable information (PII) and contract-specific details. The exposure of such information could place the affected individuals and businesses at high risk of identity theft, phishing attacks, and other fraudulent activities. The breach allegedly compromises not only customer data but also information related to their insurance partners.
The data samples provided in the post indicate the severity of the leak. The compromised information allegedly includes:
- Full Names (First Name, Last Name)
- Dates of Birth (DOB)
- Phone Numbers
- Email Addresses
- Physical Addresses
- Usernames and Passwords
- Insurance Policy Numbers and Status
- Contract effective dates and premium amounts
