A recent data breach at Texas-based insurance administrative services company Landmark Admin has left nearly 68,000 Texans and over 800,000 individuals across the United States vulnerable to potential identity theft and financial harm. The breach, which occurred on May 13, 2024, was only discovered on October 23, 2024, and involved the unauthorized access and potential theft of sensitive personal information, including names, addresses, social security numbers, identification numbers, financial data such as credit or debit card numbers, and medical and health insurance details.
Upon discovering the incident, Landmark Admin took swift action to contain the breach by disconnecting the affected systems and engaging a specialized third-party cybersecurity firm to conduct a comprehensive forensic investigation. However, the investigation revealed that the unauthorized actor re-gained access to the company’s network on June 17, 2024, further complicating the situation. The investigation ultimately concluded on July 24, 2024, but the damage may already have been done.
As a third-party administrator for several insurance carriers, including Dallas-based Liberty Bankers Insurance Group, Landmark received personal data from a wide range of parties, including producers, policy owners, insured individuals, beneficiaries, and payors. This broad scope of data collection increases the potential impact of the breach and the risk of identity theft and financial fraud.
To mitigate the consequences of the breach, Landmark Admin is offering affected individuals credit monitoring and identity theft protection services, as well as a $1 million insurance reimbursement policy and identity theft recovery services. While these measures are a step in the right direction, they may not be enough to fully protect those whose sensitive information has been compromised.
The breach serves as a stark reminder of the importance of robust cybersecurity measures in the insurance industry, where personal data is often collected and stored. It also highlights the need for timely and transparent communication in the event of a breach, as Landmark Admin only recently notified those affected. As the investigation continues, it remains to be seen whether the company will face any regulatory action or legal consequences for the delay in disclosure.
In the meantime, those impacted by the breach should take proactive steps to monitor their financial accounts and credit reports closely and consider placing a fraud alert on their credit files. It is also crucial to be vigilant for any suspicious activity and report it immediately to the relevant authorities.
Citation: Rachel Snyder, “Massive data breach at Texas-based insurance servicer affects 800,000, filings show,”, 2024, https://www.wfaa.com/article/news/local/texas/data-breach-at-landmark-admin-texas-based-insurance-servicer-affects-800000/287-28adfbf9-3b19-4445-9cad-40d694002cb5
