Erie Insurance impacted by weekend network outage, but what does that mean?
The outage began over the weekend and has continued, with Erie Insurance deploying all available resources to restore access as soon as possible. The company's website states that online account and customer care services are not operational for billing and coverage additions.
Construction continues on Project NePTWNE water research lab at Blasco Library
Christopher Mansour, Chair and Associate Professor of Cyber Security at Mercyhurst University, explained that network outages are common and sometimes require investigation to determine the cause.
Mansour noted that companies like Erie Insurance, a Fortune 500 company, have extensive resources and connections, including third-party vendors, working to resolve the situation.
New Aldi location approved in Millcreek Township
He adds network outages can degrade business operations, affecting daily processes and customer interactions. Mansour emphasized that businesses often have plans in place to address technology-related incidents to quickly resume operations.
Erie Insurance is actively working to resolve the network outage.
All facts in this report were gathered by journalists employed by WJET/WFXP. Artificial intelligence tools were used to reformat from a broadcast script into a news article for our website. This report was edited and fact-checked by WJET/WFXP staff before being published.
Copyright 2025 Nexstar Media, Inc. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Business Wire
23-06-2025
- Business Wire
The Aflac Breach Was Preventable — Token's Technology Proves It
ROCHESTER, N.Y.--(BUSINESS WIRE)-- Token, a revolutionary provider of secure, biometric identity protection solutions, announced that its technology is the industry's only available solution that could have prevented the serious data breach that Aflac confirmed on June 20, 2025. The Alflac breach possibly exposed customers' Social Security numbers, insurance claims, and personal health information and is considered to be the biggest breach in a growing wave of cyberattacks targeting the insurance industry. 'With billions in revenue and millions of customers, Aflac now joins a troubling list,' said Kevin Surace, Chair, Token. 'Erie Insurance and Philadelphia Insurance Companies were also hit this month, with major IT disruptions affecting customer services.' Share 'With billions in revenue and millions of customers, Aflac now joins a troubling list,' said Kevin Surace, Chair, Token. 'Erie Insurance and Philadelphia Insurance Companies were also hit this month, with major IT disruptions affecting customer services.' According to industry experts, sources close to the investigation say all signs point to Scattered Spider —a fast-moving, aggressive cybercrime group that's quickly becoming a top threat. The breach method relies on (and expects) legacy multi-factor authentication (MFA) — where SMS codes can be intercepted or relayed, and users can be tricked into approving authenticator app prompts during real-time phishing. These methods are easily manipulated and no longer offer protection. This type of hack requires little to no technical ability, and almost anyone who can create a simple spoofed webpage can execute this hack in minutes, leaving every company fully exposed today. Token Ring and Token BioStick leverage a combination of biometric ID (fingerprint) and proximity (using encrypted Bluetooth) to the specific device logging in to the actual registered application. Token stores a unique private key per site, secured by fingerprint. During login, it signs a one-time challenge from the real site's FIDO2 server, which verifies the signature and origin. If the origin doesn't match, the login is rejected — blocking phishing and spoofing outright. This stops real-time phishing because every credential is cryptographically locked to the exact web origin it was created for, and the authenticator will only sign a challenge that (a) comes from that origin and (b) is confirmed by a live fingerprint-match. A phisher can steal nothing re-usable and cannot trick the token into signing for the wrong site. If Aflac employees were using a Token product, the hack could not have occurred. Why the 'real-time relay' trick fails 1. User originally registered a Token device with the true site a. during the registration with the true site, public/private cryptographic key pair is negotiated which is required and validated during every subsequent passkey operation from that device to that site b. the serving site retains the public key which is used for further trusted communications with the private key on the device 2. Hacker pushes a phishing email to the victim. 3. Victim opens the phish page. The page's origin is 4. A sophisticated Phish page could potentially ask for Authentication for the true site not Browser passes rpIdHash = SHA-256(" to the token. Token Ring has no key for that hash ⇒ authentication fails. 5. Even if the Browser passes the true page name to the Token FIDO2 authenticator, the attacker's domain does not possess the cryptographic credentials for the true page to complete the authentication process with the private key on the device 6. Token Device has no identity for the incorrectly cyphered request ⇒ authentication fails - technically doesn't occur If the attacker tries to be very clever and relay the legitimate site's WebAuthn challenge through its proxy: The challenge was generated for the browser at the phish site still reports its own origin, so the signature the authenticator creates cannot be validated by the real server (rpIdHash mismatch). Expand Summary: Because Token products store a negotiated key pair per site and will only release a signature when: The site matches the domain the user is really visiting, and the domain has the secret key pair which matches the initial device registration, and The fingerprint sensor verifies the legitimate user. A remote adversary has no path to 'spoof the key' or 'forward the signature' the way they can with OTP codes or push-approval apps. Implemented correctly, FIDO2 offers true phishing-resistant MFA — and that's what makes biometric Token products orders of magnitude safer than legacy MFA. The fastest, most effective way to lock down your data and networks is to roll out Token Ring or Token BioStick across your workforce. Even if an employee falls for a phishing email, hackers still hit a dead end. Why? Because legacy MFA — like SMS codes and authenticator apps — is laughably easy to bypass. Hackers relay codes, spoof app prompts, and trick users every day. But Token's biometric FIDO2 authentication and proximity controls make that impossible. Credentials never leave the device, can't be replayed, and only work with a live fingerprint match and the right domain next to the actual device logging in. It's the difference between a padlock and a vault. About Token In a world of stolen identities and compromised user credentials, Token is changing the way our customers secure their organizations by providing passwordless, biometric, multifactor authentication. We deliver the next generation of multifactor authentication that is invulnerable to social engineering, malware, and tampering for organizations where breaches, data loss, and ransomware must be prevented. To learn more, visit
Yahoo
22-06-2025
- Yahoo
Customer data possibly leaked in Aflac cyberattack, the third insurance hack this month
Insurance company Aflac disclosed this week that cybercriminals breached its U.S. network and may have accessed customers' personal information, the latest in a string of cyberattacks on insurance companies announced this month. Aflac, which provides home and life insurance and manages data for more than 50 million policyholders, said in a June 20 federal regulatory filing it identified suspicious activity on its U.S. network on June 12. The company said it believes it stopped the intrusion within hours of identifying it, calling the attack part of a 'cybercrime campaign against the insurance industry.' The breach potentially impacted files containing customers' personal information, such as Social Security numbers and health-related details. Aflac said it is investigating the breach with the help of third-party cybersecurity experts and has not yet determined how many customers were affected. An Aflac spokesperson told Reuters that the characteristics of the incident were consistent with the hacking group Scattered Spider, which has a reputation for targeting multiple companies in a single industry in waves. More: This is how you stop online trackers from collecting your health data Latest Tech News: Is TikTok getting banned? Trump says he'll 'probably' extend deadline again It's the largest insurance provider yet to disclose a breach this month, after cyberattacks on Erie Insurance and Philadelphia Insurance Companies disrupted their network operations. Aflac said the attack did not affect its systems and it is able to continue providing services as usual while it responds to the security breach. Contributing: Reuters. Kathryn Palmer is a national trending news reporter for USA TODAY. You can reach her at kapalmer@ and on X @KathrynPlmr. This article originally appeared on USA TODAY: Aflac investigating data leak after cyber attack breach hack
Yahoo
21-06-2025
- Yahoo
Customer data possibly leaked in Aflac cyberattack, the third insurance hack this month
Insurance company Aflac disclosed this week that cybercriminals breached its U.S. network and may have accessed customers' personal information, the latest in a string of cyberattacks on insurance companies announced this month. Aflac, which provides home and life insurance and manages data for more than 50 million policyholders, said in a June 20 federal regulatory filing it identified suspicious activity on its U.S. network on June 12. The company said it believes it stopped the intrusion within hours of identifying it, calling the attack part of a 'cybercrime campaign against the insurance industry.' The breach potentially impacted files containing customers' personal information, such as Social Security numbers and health-related details. Aflac said it is investigating the breach with the help of third-party cybersecurity experts and has not yet determined how many customers were affected. An Aflac spokesperson told Reuters that the characteristics of the incident were consistent with the hacking group Scattered Spider, which has a reputation for targeting multiple companies in a single industry in waves. More: This is how you stop online trackers from collecting your health data Latest Tech News: Is TikTok getting banned? Trump says he'll 'probably' extend deadline again It's the largest insurance provider yet to disclose a breach this month, after cyberattacks on Erie Insurance and Philadelphia Insurance Companies disrupted their network operations. Aflac said the attack did not affect its systems and it is able to continue providing services as usual while it responds to the security breach. Contributing: Reuters. Kathryn Palmer is a national trending news reporter for USA TODAY. You can reach her at kapalmer@ and on X @KathrynPlmr. This article originally appeared on USA TODAY: Aflac investigating data leak after cyber attack breach hack
