---
schema_version: "secwatch.filing_event.v1"
accession: "0001193125-24-040749"
form_type: "8-K/A"
ticker: "PRU"
cik: "0001137774"
company_name: "PRUDENTIAL FINANCIAL INC"
filed_at: "2024-02-21T23:59:59+00:00"
generated_at: "2026-06-05T21:42:43.240291+00:00"
event_type: "cyber"
sentiment: "negative"
materiality_score: 0.6
calibrated_materiality_score: 0.6
confidence: "high"
source: SEC EDGAR
---

# Prudential Financial reports cyber incident; client PII and employee data exfiltrated

## Summary
- On Feb 5, detected threat actor had gained unauthorized access to systems starting Feb 4, 2024.
- Exfiltrated data includes client PII, company administrative/user data, and small % of employee/contractor accounts.
- No evidence of malware, ransomware, data destruction, or ongoing access found as of filing date.
- Incident reported to law enforcement and regulators; investigation continues with external experts.
- Company states incident has not had material impact on operations, financial condition, or results to date.

## SEC filing metadata
- accession: 0001193125-24-040749
- form_type: 8-K/A
- ticker: PRU
- cik: 0001137774
- company_name: PRUDENTIAL FINANCIAL INC
- filed_at: 2024-02-21T23:59:59+00:00
- event_type: cyber
- sentiment: negative
- materiality_score: 0.6
- calibrated_materiality_score: 0.6
- confidence: high
- sec_items: 1.05
- EDGAR index: https://www.sec.gov/Archives/edgar/data/1137774/000119312524040749/0001193125-24-040749-index.htm
- EDGAR primary document: https://www.sec.gov/Archives/edgar/data/1137774/000119312524040749/d766318d8ka.htm

## Machine-readable alternates
- HTML: https://secwatch.observer/filing/0001193125-24-040749
- JSON: https://secwatch.observer/filing/0001193125-24-040749.json
- Plain text: https://secwatch.observer/filing/0001193125-24-040749.txt

## Key facts
- Cybersecurity Incidents
  PRUDENTIAL FINANCIAL INC disclosed a cybersecurity incident: a threat actor gained unauthorized access to certain systems, accessed and exfiltrated limited data including client information, personally identifiable information, and Company administrative/user data, and accessed a small percentage of employee/contractor accounts. Impact: No evidence of malware, ransomware, data destruction/alteration; incident has not had a material impact on operations; Company has not determined it is reasonably likely to materially impact financial condition or results. Materiality is still being assessed. Discovered 2024-02-05.
  - Nature: a threat actor gained unauthorized access to certain systems, accessed and exfiltrated limited data including client information, personally identifiable information, and Company administrative/user data, and accessed a small percentage of employee/contractor accounts
  - Impact: No evidence of malware, ransomware, data destruction/alteration; incident has not had a material impact on operations; Company has not determined it is reasonably likely to materially impact financial condition or results
  - Materiality: assessing
  - Discovery: 2024-02-05
  source text: As of the date of this Report, the incident has not had a material impact on the Company’s operations, and the Company has not determined the incident is reasonably likely to materially impact the Company’s financial condition or results of operations.
  evidence_url: https://www.sec.gov/Archives/edgar/data/1137774/000119312524040749/0001193125-24-040749-index.htm

This AI-assisted summary is a reading aid. Review the linked SEC EDGAR filing before relying on any specific claim.