Fox Business Flash top headlines for May 21
Check out what’s clicking on FoxBusiness.com.
CNA Financial Corporation, a major U.S. insurance company, has revealed that it paid a $40 million ransom after a March cyberattack, according to reports.
The Chicago-based insurance giant on May 12 released a security incident update informing clients that it took "immediate action" after the March 21 attack "by proactively disconnecting" its systems from its network, and CNA has "no evidence to indicate that external customers were potentially at risk of infection due to the incident."
COLONIAL PIPELINE HACKER DARKSIDE REAPED $90M FROM 47 VICTIMS
"CNA followed all laws, regulations, and published guidance, including OFAC’s 2020 ransomware guidance, in its handling of this matter," CNA told FOX Business.
CNA is not commenting on the ransom, specifically, but it has been in communication with the FBI and Office of Foreign Assets Control regarding the cyber incident and the threat actor’s identity," the company said. The $40 million figure was first reported by Bloomberg, citing people familiar with the matter.