Virginia-based direct-to-consumer personal lines insurer Elephant Insurance reports that it experienced a cyber incident beginning in late March and as of April 25 its review had been able to identify consumers whose data may have been viewed or copied from its network.
The company determined that the breach occurred between March 26, 2022 and April 1, 2022. The affected information includes name, driver’s license number and date of birth.
The company did not disclose the number of affected persons. Elephant sells insurance in eight states: Georgia, Illinois, Indiana, Maryland, Ohio, Tennessee, Texas and Virginia.
The information either relates to current or previous Elephant Insurance customers or is information the firm received as part of providing a quote for auto or other insurance coverage. Elephant said it is providing information about the incident, its response, and resources available to affected individuals including access to credit monitoring services.
The company said it took prompt measures to secure its systems and investigate the incident. It said it has reported the event to federal law enforcement and is notifying appropriate state regulatory agencies.
Elephant Insurance is a brand of Elephant Insurance Co., Elephant Insurance Services and Grove General Agency. Elephant is wholly-owned subsidiary of Admiral Group, plc., a U.K. insurer.
Topics Data Driven Cyber
Was this article valuable?
Here are more articles you may enjoy.
Ship Insurers Set for Major Claims From Iran War, Allianz Says 
Florida’s Unemployment Rate Is Surging Even as High-Profile Companies Move In 
North Carolina Becomes First State to Pass Outright Ban on Litigation Financing 
Need Wind Mitigation? New Florida Insurer Wants to Help With That 
