2024-06-14 GLOBE LIFE INC. Cybersecurity Incident

Page last updated on June 14, 2024

GLOBE LIFE INC. initially disclosed a cybersecurity incident in an SEC 8-K filing on 2024-06-14 07:00:31 EDT.

Incident Details

Material: Unknown
Is Breach: TRUE
Records Compromised: Unknown
Data Types Impacted: No Data Types Tracked (yet)

Compromised Date:
Detected Date: 2024-06-13
Disclosure Date: 2024-06-14
Contained Date:
Recovered Date:

Attack Goal: Unknown

Costs: No Costs Tracked (yet)

Filings

8-K filed on 2024-06-14

GLOBE LIFE INC. filed an 8-K at 2024-06-14 07:00:31 EDT
Accession Number: 0000320335-24-000029

Item 8.01 Other Events.

On June 13, 2024, following an inquiry from a state insurance regulator, Globe Life Inc. (the “Company”) initiated a review of potential vulnerabilities related to access permissions and user identity management for a Company web portal that likely resulted in unauthorized access to certain consumer and policyholder information. Immediately upon notification of these circumstances, the Company removed external access to the portal. At this time, the Company believes the issue is specific to this portal, and all other systems remain operational. The Company’s operations will not be significantly impacted by the removal of external web access to the portal in question. The Company has activated its incident response plan and retained leading security experts to investigate and assist in the remediation of any potential issues.

As the investigation of the incident is ongoing, the full scope, nature and impact of the incident are not yet known; however, as of the date of this report, the incident has not had a material impact on the Company’s operations, and the Company has not determined whether this is a material cybersecurity incident required to be reported under Item 1.05 of Form 8-K.

Company Information