HPM Insurance, an insurance agency located in Amherst, New Hampshire, has recently informed the Maine Attorney General of a cybersecurity incident affecting three Maine residents. The breach, first detected on October 27, 2023, involved unusual activity within HPM’s email environment, leading to unauthorized access to sensitive information. A specialized third-party cybersecurity firm was promptly engaged to investigate the incident, which revealed that personal information such as names, addresses, dates of birth, driver’s licenses, state IDs, account numbers, routing numbers, medical information, health insurance details, and Social Security numbers might have been compromised.
Following the discovery, HPM Insurance undertook a thorough review to identify the specific individuals affected and the types of data exposed. While the company has not yet reported any misuse of the compromised information, it has taken proactive measures to mitigate potential risks. Affected individuals have been notified via mail, and HPM has offered twelve months of complimentary credit monitoring and identity theft restoration services through Cyberscout, a TransUnion company.
To prevent future incidents, HPM Insurance has implemented several security enhancements, including changing all user credentials and bolstering its security infrastructure. The company continues to assess and update its systems to ensure robust protection against potential threats. Additionally, HPM has provided guidance on safeguarding against identity theft and fraud, including instructions for placing fraud alerts, freezing credit, and monitoring credit reports.
For any questions or further information, affected individuals can contact HPM Insurance’s representative, Joseph M. Fusz, at Wilson Elser Moskowitz Edelman & Dicker LLP. The company remains committed to securing the sensitive information in its control and ensuring that similar incidents are prevented in the future.
Reference:
