Customers and Employees of Talcott Resolution Life Insurance Likely Lost Data to Recent Breach
Table of Contents
- By Steven
- Jul 05, 2023
Talcott Resolution Life Insurance is a newer company founded in 2018. The organization specializes in life insurance and annuity offerings. It's located in Windsor, Connecticut, and has an annual revenue of $1.6 billion. The organization is responsible for managing about one million insurance contracts currently, which is a serious concern since the company was recently breached. This data breach could lead to substantial customer losses if those involved don't react quickly enough.
How Did the Attack Occur?
Near the end of May or early June, the Talcott Resolution Insurance Company lost a substantial amount of data in connection with the string of MOVEit breaches. All these breaches are linked to the C10P ransomware gang, and the hackers likely stole the data with hopes of collecting a ransom to have the information returned without being released to the public. The attack was actually on PBI Research, a third-party IT services provider for the life insurance company, but Talcott Resolution customers are the ones that lost data because of the breach.
What Information Was Viewed or Stolen?
In connection with the Talcott Resolution Life Insurance data breach, consumers lost their full names, Social Security numbers, birth dates, email addresses, phone numbers, and much more. A significant amount of consumer data was taken in the breach, and likely some health information was also involved. We don't have a breakdown of every data point that was likely taken in this data breach, but we suspect the information stolen could be very harmful if misused.
How Did Talcott Resolution Admit to the Breach?
Talcott Resolution filed a notice with the Maine Attorney General's office about the data breach on June 28, 2023. The breach specifies that consumer data was taken in this breach. The company will also be sending out individual notices to everyone impacted by this breach since personal data was involved. While no official statement has been released to the public yet, the company is doing more to inform individuals than some of the other businesses connected to the MOVEit file transfer service breach. Most impacted customers should receive a notice that gives them time to secure their information and protect themselves before their information is misused.
What Will Become of the Stolen Information?
Like the other targets in this chain of breaches, the Talcott Resolution Life Insurance information will likely be listed online or sold off to the highest bidder if the organization doesn't pay the demanded ransom amount to the C10P gang that stole the information. If your data is connected with this company, you could be at risk of having your data exploited.
What Should Affected Parties Do in the Aftermath of the Breach?
If you receive a notice from PBI or Talcott Resolution, you should immediately take steps to protect yourself. Consider freezing your credit or at least getting credit monitoring services to watch what happens with your credit. The attackers have the ability to misuse your data to open fraudulent accounts and take credit in your name. Knowing what changes occur to your credit can help you react before any serious harm can be done to your credit or your finances.