Aflac Inc., one of the largest providers of supplemental insurance in the United States, disclosed that hackers obtained customer files containing claims information, Social Security numbers and health data during a network intrusion discovered on 12 June. In a filing with the U.S. Securities and Exchange Commission, the Columbus, Georgia-based company said it contained the breach within hours and that business operations remain unaffected while it assesses how many of its roughly 50 million policyholders, beneficiaries, employees and agents were exposed. According to Aflac, the attackers gained entry through social-engineering techniques, a hallmark of the cyber-crime collective known as Scattered Spider. Google’s threat-intelligence unit warned last week that the group has turned its attention to the insurance sector. Erie Insurance and Philadelphia Insurance Companies reported similar incidents earlier this month, underscoring what security researchers describe as a coordinated campaign against the industry. The Aflac revelation capped a series of cybersecurity disclosures in recent days. Indian car-sharing platform Zoomcar told regulators a 9 June breach exposed personal data on about 8.4 million users, while Canadian and U.S. agencies said a China-linked outfit dubbed Salt Typhoon compromised at least one Canadian telecommunications provider by manipulating Cisco routers. The wave of incidents highlights mounting pressure on companies to bolster defenses and comply with new SEC rules that demand prompt reporting of material cyber events.