Massive data breach exposes 800,000 insurance customers' personal information

Technology Kurt Knutsson, CyberGuy Report 30/10/2024

Over the past few months, we’ve seen a wave of data breaches affecting millions of people, from health care giants to government contractors and more. This latest incident is yet another in a long line of alarming breaches. Now, the insurance administrative services company Landmark Admin has warned that a data breach from a May cyberattack impacted over 800,000 individuals.

Landmark Admin has partnered with some of the largest insurance carriers in the U.S., including American Monumental Life Insurance Company, Pellerin Life Insurance Company and American Benefit Life Insurance Company. 

Through these partnerships, millions of policyholders and their sensitive information, such as names, Social Security numbers, driver’s license numbers and passport numbers, could be at risk of exposure, further amplifying the potential impact of this breach.

GET SECURITY ALERTS, EXPERT TIPS – SIGN UP FOR KURT’S NEWSLETTER – THE CYBERGUY REPORT HERE

A woman working on her laptop  (Kurt "CyberGuy" Knutsson)

What you need to know

In a report to the Maine attorney general's office, Landmark revealed it spotted unusual activity in its systems May 13, 2024, prompting it to disconnect affected systems and block remote access to its network (via Bleeping Computer).

Landmark brought in a specialized third-party cybersecurity team to help secure its systems and run a thorough investigation to understand the extent of the breach. But while they were looking into it, the hackers managed to break back into Landmark’s system June 17, 2024.

The cybersecurity team’s findings showed data was both encrypted and stolen from Landmark's systems. According to the investigation, hackers may have gained unauthorized access to the personal details of impacted individuals, which could include full name, address, Social Security number, tax ID, driver’s license or state-issued ID number, passport number, bank details, medical info, health insurance policy number, date of birth and details about life and annuity policies.

Illustration of a hacker at work  (Kurt "CyberGuy" Knutsson)

MASSIVE DATA BREACH EXPOSES 3 MILLION AMERICANS’ PERSONAL INFORMATION TO CYBERCRIMINALS  

What is Landmark doing after data breach? 

Landmark is offering free identity theft protection services for those affected by the data breach. It's also notifying everyone whose personal information may have been in its systems during the breach. Individual notices will be sent by U.S. first-class mail, going out in batches as they identify potentially affected individuals. The first wave of letters was sent Oct. 23, 2024.

CLICK HERE FOR MORE U.S. NEWS

Illustration of a hacker at work  (Kurt "CyberGuy" Knutsson)

WORLD’S LARGEST STOLEN PASSWORD DATABASE UPLOADED TO CRIMINAL FORUM

9 ways to protect yourself from data breaches

1. Enable two-factor authentication: Activate two-factor authentication (2FA) for an extra layer of security on all your important accounts, including email, banking and social media. Two-factor authentication requires you to provide a second piece of information, such as a code sent to your phone, in addition to your password when logging in. This makes it significantly harder for hackers to access your accounts, even if they have your password. Enabling 2FA can greatly reduce the risk of unauthorized access and protect your sensitive data.

2. Monitor your accounts and transactions: You should check your online accounts and transactions regularly for any suspicious or unauthorized activity. If you notice anything unusual, immediately report it to the service provider or authorities. You should also review your credit reports and scores to see if there are any signs of identity theft or fraud.

3. Contact your bank and credit card companies: Landmark hackers obtained your bank and credit card information, which they could use to make purchases or withdrawals without your consent. You should inform your bank and credit card companies of the situation. They can help you freeze or cancel your cards, dispute any fraudulent charges and issue new cards for you.

You should also contact one of the three major credit reporting agencies (Equifax, Experian or TransUnion) and request a fraud alert to be placed on your credit file. This will make it more difficult for identity thieves to open new accounts in your name without verification. You can even freeze your credit if need be.

4. Use personal data removal services: In light of these ongoing data breaches, protecting personal data has become essential. One proactive step is to consider personal data removal services, which specialize in continuously monitoring and removing your information from various online databases and websites. These services employ advanced tools and techniques to identify and eliminate your data from people search sites, data brokers and other platforms where your information might be exposed. By using a data removal service, you can minimize the risk of identity theft and fraud, especially after a data breach. Additionally, these services often provide ongoing monitoring and alerts, keeping you informed of any new instances of your data appearing online and taking immediate action to remove it. Check out my top picks for data removal services here. 

GET FOX BUSINESS ON THE GO BY CLICKING HERE

5. Have strong antivirus software: As cyberthreats grow in frequency and sophistication, strong antivirus software is also crucial to fend off malware and phishing scams, both of which could expose your sensitive information if left unguarded.

The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe. Get my picks for the best 2024 antivirus protection winners for your Windows, Mac, Android and iOS devices.

6. Use strong, unique passwords: Secure access to your accounts is paramount. Using strong, unique passwords for each account is an effective barrier against unauthorized access, especially when data breaches place your information at heightened risk. Avoid reusing passwords across multiple accounts. A strong password typically has a mix of uppercase, lowercase, numbers and special characters and is at least 12 characters long. Consider using a password manager to help generate and store complex passwords securely.

7. Keep your software updated: Outdated software can have vulnerabilities that hackers exploit. Ensure your operating systems, apps and browsers are updated to the latest versions to close any security gaps.

8. Limit sharing of personal information online: Be mindful about sharing personal information on social media or other platforms, as hackers can use this data in phishing schemes. Make sure to adjust privacy settings on your social media accounts so only trusted friends can view your profile information.

9. Avoid public Wi-Fi for sensitive transactions: Public Wi-Fi networks are often less secure and can be vulnerable to hackers. When accessing sensitive accounts, use a VPN or wait until you're on a trusted, secure network. For best VPN software, see my expert review of the best VPNs for browsing the web privately on your Windows, Mac, Android & iOS devices

WINDOWS FLAW LETS HACKERS SNEAK INTO YOUR PC OVER WI-FI

Kurt’s key takeaway

The Landmark data breach is just one of several data breaches I’ve covered this year. While it’s still unclear what type of cyberattack hackers used to break into the insurance company’s systems, one thing is certain – they accessed sensitive data. Even more concerning is that hackers got into Landmark’s system not once but twice, hinting at some major cybersecurity gaps. If you think you may have been affected, stay vigilant and follow good cybersecurity practices.

CLICK HERE TO GET THE FOX NEWS APP

Do you think companies are investing enough in their cybersecurity infrastructure? Let us know by writing us at Cyberguy.com/Contact

For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter

Ask Kurt a question or let us know what stories you'd like us to cover

Follow Kurt on his social channels

  • Facebook
  • YouTube
  • Instagram

Answers to the most asked CyberGuy questions:

  • What is the best way to protect your Mac, Windows, iPhone and Android devices from getting hacked?
  • What is the best way to stay private, secure and anonymous while browsing the web?
  • How can I get rid of robocalls with apps and data removal services?
  • How do I remove my private data from the internet?

New from Kurt:

Try CyberGuy's new games (crosswords, word searches, trivia and more!)

Copyright 2024 CyberGuy.com.  All rights reserved.

Disclaimer: The copyright of this article belongs to the original author. Reposting this article is solely for the purpose of information dissemination and does not constitute any investment advice. If there is any infringement, please contact us immediately. We will make corrections or deletions as necessary. Thank you.

tech security Privacy cybercrime

Related: