Elephant Insurance is a direct-to-consumer auto insurance company that offers coverage in eight US states. The company is known for offering reasonable prices and offers insurance in Ohio, Georgia, Texas, Virginia, Indiana, Illinois, Maryland, and Tennessee.
The Elephant Insurance data breach occurred because company email accounts were hacked into and utilized by unauthorized individuals. Several different employee email accounts were accessed, which means confidential information could have been accessed, copied, and distributed during the attack.
A series of Elephant Insurance email breaches occurred between September 2021 and March 2022. During this six-month period, the email accounts were accessed, and the attackers could have copied any of the data contained within the accounts.
The Elephant Insurance breach may impact company employees and customers working with the agents whose email accounts were compromised. Many business email accounts were compromised in the attack, and it's possible your personal information was in an attachment or a secure email message in one of the vulnerable accounts.
Potentially thousands of individual Elephant Insurance files were accessed due to this breach. Each email was used to handle and process paperwork from employees and customers, and those documents were accessible when the accounts were accessed. If you receive a notice from Elephant Insurance, you should watch your accounts closely and utilize the credit monitoring services offered.