news-highlightsData Exposure on Geico’s Website | Application Security

Data Exposure on Geico's Website

News Highlights

April 20, 2021

Data Exposure on Geico’s Website

CyberWire Pro wrote about the recent TechCrunch report that Geico, the second largest automobile insurer in the US, has discovered that hackers have been stealing customers’ driver’s license information from their sales website. This type of data is often prized by cybercriminals seeking to file for fraudulent unemployment benefits, as license numbers are required as a form of identification by US benefits authorities. The company did not disclose how many individuals were impacted, but they did notify the California state attorney general’s office of the issue, as is required when a breach affects more than five hundred residents. Engadget adds that the data was exposed from January 21 to March 1 and that Geico has secured the website as they investigate the cause of the incident.

K2’s VP, Timothy Chiu was tapped for commentary on the Geico Data Breach by CyberWire Pro.

Click here to read more about the Geico Data Breach and K2’s commentary.


K2 Cyber Security delivers the Next Generation Application Workload Protection Platform to secure web applications and container workloads against sophisticated attacks including OWASP Top 10 and memory-based attacks, and provides additional vulnerability detection. K2’s Platform is deployed on production servers for runtime protection of applications and on pen-testing/pre-production servers to identify the location of the vulnerable code in real-time. K2’s solution generates almost no false alerts, eliminates breaches due to zero-day attacks, detects attacks missed by traditional security tools including Web Application Firewalls, and dramatically reduces security cost. K2 Cyber Security is located in the USA, and provides cyber security solutions globally.


K2 Cyber Security, Inc.

2580 N. First Street, #130

San Jose, CA 95131