Lyons Companies suffered from a data breach incident
Lyons Companies, one of Delaware's leading insurance brokers, has suffered from a data breach incident that compromises sensitive information of the customers. Lyons became aware about this incident on Mar. 12, 2019, when the Wilmington, Delaware-based brokerage discovered "unusual activity" in email account of an employee.
Lyons then immediately launched an investigation about this data breach incident, which involved hiring and working with the third-party forensic experts.
The investigation has determined that email account of two Lyons employees has been accessed without any authorization. One of the email accounts has been accessed between Feb. 4, 2019, and Mar. 12, 2019, whereas the second email account has been accessed for some hours on Mar. 12, 2019. The investigation was not able to confirm whether any information was accessed and, if yes, what kind of information was possibly accessed. However, Lyons has done review of all data in the two email accounts in order to determine the type of information that has been present as well as to whom that data was related.
The two compromised employee email accounts contains the customers' personal information like names, driver's license information, contact information, birth dates, bank account information or various other financial information. Those two compromised employee email accounts also contains medical and/or clinical information like the patient identification numbers, medical record numbers, Medicaid or Medicare identification number, diagnosis and the treatment information, health insurance information and claims information. The brokerage added that Social Security numbers of a few individuals was also present in those compromised employee email accounts.
"Lyons Companies ('Lyons') takes the security and privacy of all information that it holds very seriously," the company said in their security notice. Lyons stated that "Lyons receives data from employers in furtherance of the insurance brokerage services it offers. Therefore, once the review of the emails was complete, we worked diligently to determine which employers provided the data and to notify the employers of this incident".
As a result of this data breach incident, Lyons strengthened security of their systems so as to prevent such kind of incidents from occurring in the future. Moreover, Lyons is providing impacted individuals with the "Privacy Safeguards" guidelines that can be used for better protecting the personal information.
Additionally, Lyons is also providing free identity restoration and credit monitoring services to all impacted individuals.
» SPAMfighter News - 9/12/2019