QBE Insurance Corporation has reported a data breach to the Attorney General of Massachusetts, stemming from the larger HealthEquity data breach that occurred on March 25, 2024. HealthEquity discovered that an unauthorized third party had accessed a data repository outside its main systems. As part of the breach, sensitive personal identifiable information (PII) and protected health information (PHI) stored in QBE’s systems may have been compromised. QBE has since launched a review of the incident to determine the extent of the data exposure and to notify individuals whose personal information may have been affected.
The investigation revealed that various types of sensitive information may have been accessed, including names, Social Security numbers, contact details, dates of birth, employee and employer IDs, payment card transaction data, and health insurance information. The exposed information varies depending on the individual, and QBE has begun mailing notification letters to those affected, informing them of the specific types of data potentially compromised. Additionally, QBE is offering complimentary credit monitoring services to help protect against the misuse of this sensitive information.
QBE’s breach notification process is part of the company’s efforts to comply with state regulations and provide assistance to affected individuals. Those impacted by the breach are urged to take advantage of the credit monitoring services offered and remain alert for signs of identity theft or fraud. The company has provided instructions for activating the credit monitoring services and has set up dedicated customer service support for those with questions about the incident or the steps they should take.
QBE is a global insurance company headquartered in Sydney, Australia, operating in 27 countries and offering risk management solutions to businesses and individuals. QBE North America, its regional division, was established in 1991 and is headquartered in New York. The company employs over 1,000 people in North America and reported $7.6 billion in gross written premiums in 2023. Despite the breach, QBE remains committed to addressing the security concerns and taking steps to prevent further incidents of this nature.
Reference: