On September 19, 2024, Insurance Agency Marketing Services (IAMS) notified the Attorney General of Texas about a data breach in which unauthorized individuals accessed and potentially acquired sensitive consumer information stored on the company’s network. The breach involved the exposure of personal details, including names, Social Security numbers, driver’s license numbers, financial and medical information, health insurance data, and dates of birth. IAMS initiated an investigation upon discovering the breach and has been in the process of notifying affected individuals, sending them data breach notification letters to inform them of what information was compromised.
The breach occurred when an unauthorized party remotely accessed IAMS’s computer network, where they obtained certain files containing confidential consumer data. Following the breach, IAMS launched an internal investigation to assess the scope of the incident and determine which specific files had been compromised. The company’s investigation revealed that the unauthorized party was able to access sensitive consumer data stored in the system, which led to the breach notification being sent out in mid-September.
IAMS’s breach investigation confirmed that the compromised data varied depending on the affected individual, with some of the exposed information including Social Security numbers, driver’s license numbers, medical and financial data, and health insurance information. The company’s review of the compromised files took place on July 12, 2024, after which it determined the extent of the exposure. While the specific details of how the unauthorized party gained access to the system have not been fully disclosed, IAMS has been working to resolve the issue and provide support to those impacted.
In response to the breach, IAMS has been sending notifications to affected individuals, outlining the type of sensitive information that may have been compromised. The company is also offering guidance and resources to help victims of the breach protect their personal data moving forward. Founded in 1986 and based in Elkhorn, Nebraska, IAMS is an independent insurance brokerage firm that provides marketing and back-office services to insurance companies. Despite the breach, the company continues to operate and is working to ensure that future security vulnerabilities are addressed.
Reference: