U.S. based insurer CNA and CNA Canada have been hit by “a sophisticated cybersecurity attack.”

In an announcement shared on its website and that of CNA Canada, the Chicago-based property and casualty insurance giant stated that the attack has caused a network disruption and impacted certain CNA systems, including corporate email. 
 
“Upon learning of the incident, we immediately engaged a team of third-party forensic experts to investigate and determine the full scope of this incident, which is ongoing. We have alerted law enforcement and will be cooperating with them as they conduct their own investigation,” states the CNA announcement. 
 
The insurer added that it has disconnected its systems from its network “out of an abundance of caution.” 

CNA says it has “notified employees and provided workarounds where possible to ensure they can continue operating and serving the needs of our insureds and policyholders to the best of their ability.” 
 
The insurer added that if it determines that the cyberattack has impacted customers’ data, they will be notified directly.