Landmark Admin, a third-party administrator (TPA) specializing in administrative support services for life insurance and annuity companies, has confirmed that it recently suffered a serious ransomware attack.
The company announced the news in a filing with the Maine Office of the Attorney General, which said people’s data was stolen in an attack that took place in mid-May 2024.
Following the breach, Landmark Admin shut down its IT systems and remote access to its network to limit the impact, and brought in third-party security experts, who discovered that the personal information of 806,519 people had been stolen.
Identity theft
“The forensic investigation revealed that the data was encrypted and exfiltrated from Landmark’s system,” the company said. “However, there was insufficient evidence available to identify which files were compromised. The unauthorized activity occurred between May 13, 2024 and June 17, 2024.”
When the investigation was completed, the company understood that the information collected by the hackers included first name/initial and last name; address; Citizen service number; tax identification number; driver’s license number/state-issued identification card; passport number; financial account number; medical information; date of birth; policy number of your health insurance; and information about life and annuity policies.
“Please note that the above information will vary for each potentially affected individual. Affected individuals will be notified by mail of the affected information,” Landmark said.
So far, no threat actors have taken responsibility for the attack, so we don’t know if a ransom demand has been made.
Because the stolen information is highly sensitive, users are advised to be extra vigilant for possible phishing attacks, social engineering or possible wire fraud. Landmark offers credit monitoring and identity theft protection services through IDX, including 12 months of credit and CyberScan monitoring, a $1,000,000 insurance policy, and fully managed identity theft recovery services.
Via BleepingComputer