Over 800,000 Impacted by Landmark Admin Data Breach

Insurance administrative services provider Landmark Admin has disclosed that a recent data breach has compromised the sensitive information of over 800,000 individuals. The breach, which occurred in mid-May 2024, exposed a wide range of personal details, including Social Security numbers, tax identification numbers, driver’s license information, and even medical records.

Landmark Admin, which handles back-office services such as claims administration for insurance carriers, detected the breach on May 13, 2024. According to Landmark’s data breach notice, the company responded immediately by shutting down its IT systems and blocking remote access. Despite these efforts, the attackers managed to re-enter the network on June 17, while the investigation was ongoing.

The attack impacted a total of 806,519 people, according to a filing with the Maine Attorney General’s Office. “In abundance of caution, Landmark is notifying all individuals whose private information may have been contained in its systems at the time of the incident. Individual notice letters will be mailed to these potentially affected individuals,” stated the company.

The company has not disclosed the nature of the attack, so it is unknown whether ransomware was involved. However, the investigation is still ongoing, and Landmark has stated that they will notify affected individuals if pertinent information comes to light.

As part of its response, Landmark Admin is offering victims 12 months of free credit monitoring and identity theft protection services through IDX. Additionally, the company has advised individuals to monitor their financial accounts and be on the lookout for potential phishing attempts or fraudulent activity.

With insurance companies increasingly being targeted for their rich troves of personal and financial data, the Landmark breach further underscores the pressing need for improved cybersecurity in the industry.