Landmark Admin, a Texas-based third-party administrator for insurance services, has updated its data breach impact figures. Initially reported in October 2024 as affecting approximately 806,000 individuals, the breach is now confirmed to have compromised the personal information of 1,613,773 people.
Breach Discovery and Response
Landmark Admin detected unauthorized access to its systems on May 13, 2024. The company promptly disconnected the affected systems and engaged a third-party cybersecurity firm to conduct a comprehensive forensic investigation. The investigation revealed that the attackers had access to the network from May 13 to June 17, 2024. During this period, certain systems were encrypted, and data was exfiltrated. However, the specific files compromised could not be conclusively identified.
Scope of Compromised Data
The breach exposed a wide range of sensitive personal information, varying by individual. The compromised data includes:
- Full names
- Home addresses
- Social Security numbers
- Tax identification numbers
- Driver’s license numbers
- State-issued identification card numbers
- Passport numbers
- Financial account numbers
- Medical information
- Dates of birth
- Health insurance policy numbers
- Life and annuity policy information
Landmark Admin has committed to notifying affected individuals via personalized letters detailing the specific data compromised in each case.
Ongoing Investigation and Support Measures
The forensic investigation is still underway, and the total number of affected individuals may be subject to further revision. In the interim, Landmark Admin is offering the following support to those impacted:
- 12 months of identity theft protection and credit monitoring services
- A $1 million insurance reimbursement policy for verified damages
- Managed identity theft recovery services
Affected individuals are encouraged to monitor their credit reports and consider placing fraud alerts or security freezes on their credit files.
Impact on Partner Companies
Landmark Admin provides backend operations for several insurance companies, including:
- American Benefit Life Insurance Company
- American Monumental Life Insurance Company
- Capitol Life Insurance Company
- Continental Mutual Insurance Company
- Liberty Bankers Life Insurance Company
- Pellerin Life Insurance Company
Clients of these companies may be among those affected by the breach.
