Technology
Insurance data breach exposes sensitive info of 1.6 million people
If there’s one thing I’ve learned from covering data breaches over the years, it’s that you should never take a company’s initial numbers at face value. When a breach becomes public, most companies try to minimize the damage by reporting fewer victims or staying vague about what kind of data was exposed.
Sometimes, to be fair, they genuinely don’t have the full picture yet. But that rarely gets communicated clearly. The same thing just happened again with an insurtech company that has now doubled the number of people affected by a breach it disclosed last year.
STAY PROTECTED & INFORMED! GET SECURITY ALERTS & EXPERT TECH TIPS – SIGN UP FOR KURT’S ‘THE CYBERGUY REPORT’ NOW
A woman working on her laptop (Kurt “CyberGuy” Knutsson)
What you need to know
Texas-based insurance administrative services provider Landmark Admin has revised the scope of its May 2024 cyberattack, revealing that nearly twice as many people were impacted as initially reported. Back in October 2024, Landmark disclosed that suspicious activity was detected in its network on May 13, prompting an investigation. At the time, it was estimated that the breach affected 806,519 individuals. But in a recent update filed with the Maine Attorney General’s office, that number has now jumped to 1,613,773.
Landmark serves as a third-party administrator offering backend support to major insurers like Liberty Bankers Life and American Benefit Life. This means millions of sensitive insurance policy records flow through its systems, making it a tempting target for cybercriminals.
The compromised information varies for each individual but may include a wide range of sensitive personal data. This includes full names, home addresses, Social Security numbers, tax identification numbers, driver’s license or state-issued identification numbers, passport numbers and bank account details. In some cases, medical information, dates of birth, health insurance policy numbers and details related to life and annuity policies may also have been exposed.
A hacker at work (Kurt “CyberGuy” Knutsson)
200 MILLION SOCIAL MEDIA RECORDS LEAKED IN MAJOR X DATA BREACH
What is Landmark doing now?
The company says the forensic investigation is still ongoing and that the total number of affected individuals may continue to rise. Personalized notification letters are being mailed out in phases, detailing exactly what type of data was compromised in each case.
“Landmark began reviewing the affected systems to identify the specific individuals and the types of information that may have been compromised,” reads the latest notice. “While this process remains ongoing, Landmark will notify affected individuals by mail as the information becomes available.”
To help mitigate the fallout, Landmark is offering 12 months of free credit monitoring and identity theft protection. The notice also advises recipients to monitor their credit reports and consider placing fraud alerts or a security freeze for extra protection. A dedicated helpline is available for 90 days after notification to address questions and concerns.
A man working on his laptop and scrolling on his phone (Kurt “CyberGuy” Knutsson)
MALWARE EXPOSES 3.9 BILLION PASSWORDS IN HUGE CYBERSECURITY THREAT
6 ways you can stay safe from insurance data breach
If your information was part of the Landmark breach or any similar one, it’s worth taking a few steps to protect yourself.
1) Consider identity theft protection services: Since the Landmark data breach exposed personal and financial information, it’s crucial to stay proactive against identity theft. Identity theft protection services offer continuous monitoring of your credit reports, Social Security number and even the dark web to detect if your information is being misused. These services send you real-time alerts about suspicious activity, such as new credit inquiries or attempts to open accounts in your name, helping you act quickly before serious damage occurs.
Beyond monitoring, many identity theft protection companies provide dedicated recovery specialists who assist you in resolving fraud issues, disputing unauthorized charges and restoring your identity if it’s compromised. They often include up to $1 million to cover losses and legal fees and a white-glove fraud resolution team in which a U.S.-based case manager helps you recover any losses. See my tips and best picks on how to protect yourself from identity theft.
2) Monitor your accounts and transactions: The Landmark data breach revealed bank details to attackers, which means they can misuse those details to steal your money. You should check your online accounts and transactions regularly for any suspicious or unauthorized activity. If you notice anything unusual, immediately report it to the service provider or authorities. You should also review your credit reports and scores to see if there are any signs of identity theft or fraud.
3) Contact your bank and credit card companies: Since Landmark hackers obtained bank and credit card information, they could use it to make purchases or withdrawals without your consent. You should inform your bank and credit card companies of the situation. They can help you freeze or cancel your cards, dispute any fraudulent charges and issue new cards for you. You should also contact one of the three major credit reporting agencies (Equifax, Experian or TransUnion) and request a fraud alert to be placed on your credit file. This will make it more difficult for identity thieves to open new accounts in your name without verification.
4) Use personal data removal services: The data breach leaks loads of information about you, and all this could end up in the public domain, which essentially gives anyone an opportunity to scam you. One proactive step is to consider personal data removal services, which specialize in continuously monitoring and removing your information from various online databases and websites. While no service promises to remove all your data from the internet, having a removal service is great if you want to constantly monitor and automate the process of removing your information from hundreds of sites continuously over a longer period of time. Check out my top picks for data removal services here.
5) Have strong antivirus software: Landmark hackers have people’s email addresses and full names, which makes it easy for them to send you a phishing link that installs malware and steals all your data. These messages are socially engineered to catch them, and catching them is nearly impossible if you’re not careful. However, you’re not without defenses.
The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have strong antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe. Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices.
6) Enable two-factor authentication: While passwords weren’t part of the data breach, you still need to enable two-factor authentication (2FA). It gives you an extra layer of security on all your important accounts, including email, banking and social media. 2FA requires you to provide a second piece of information, such as a code sent to your phone, in addition to your password when logging in. This makes it significantly harder for hackers to access your accounts, even if they have your password. Enabling 2FA can greatly reduce the risk of unauthorized access and protect your sensitive data.
WINDOWS 10 SECURITY FLAWS LEAVE MILLIONS VULNERABLE
Kurt’s key takeaway
The real risk with breaches like this isn’t just the initial leak. It’s the slow drip of consequences that follow. As more names and numbers surface, the fallout becomes harder to contain, and the people impacted are left scrambling to protect themselves. Landmark’s delayed clarity is a reminder that in the world of cyberattacks, timelines rarely work in the public’s favor. By the time the full picture emerges, the damage may already be done.
Do you think companies are investing enough in their cybersecurity infrastructure? Let us know by writing us at Cyberguy.com/Contact.
For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.
Ask Kurt a question or let us know what stories you’d like us to cover.
Follow Kurt on his social channels:
Answers to the most-asked CyberGuy questions:
New from Kurt:
Copyright 2025 CyberGuy.com. All rights reserved.
AMD is officially announcing its Radeon RX 9060 XT GPU at Computex today. Like the number implies, this graphics card will challenge Nvidia’s recently released RTX 5060 and RTX 5060 Ti, with AMD offering models with 8GB or 16GB of VRAM. AMD is launching both models on June 5th, with the 8GB variant priced at $299, with the 16GB version priced at $349.
AMD is following Nvidia’s controversial choice to ship a modern GPU with just 8GB of VRAM in the year 2025. The 8GB of VRAM debate has been raging for months now, particularly because of the latest games that can be very demanding on the memory side. AMD is following in Nvidia’s footsteps, though, so it’ll be interesting to see what reviewers make of both cards in this important part of the market.
The RX 9060 XT will ship with 32 RDNA 4 compute units, a boost clock of 3.13GHz, and support for DisplayPort 2.1a and HDMI 2.1b. The total board power is between 150 watts and 182 watts, depending on the model. AMD claims its 16GB version of the RX 9060 XT will be around 6 percent faster than Nvidia’s RTX 5060 Ti at 1440p resolution, based on 40 games that AMD has tested itself.
We’re still waiting to hear how the RTX 5060 stacks up, because oddly, Nvidia launched its latest 50-series GPU yesterday without any reviews available. The GPU maker had reportedly prevented reviewers from obtaining the necessary driver to test the RTX 5060 ahead of the release date, presumably because it’s worried about the paltry 8GB of VRAM spec.
While the 8GB of VRAM choice for both Nvidia and AMD is controversial, Nvidia has managed to spark a further wave of outrage from PC gaming YouTubers over comments it has made to Gamers Nexus. In a 22-minute video, Gamers Nexus discusses the pressure from Nvidia to include Multi Frame Generation (MFG) in benchmarks against competitor cards that don’t have a similar feature. Gamers Nexus (GN) alleges that Nvidia has even implied that it would revoke access to interview Nvidia engineers unless the channel discussed MFG more.
Update, May 21st: Article updated with pricing and release date information that AMD didn’t share with The Verge ahead of its press conference.
Technology
Peek-a-boo, Big Tech sees you: Expert warns just 20 cloud images can make an AI deepfake video of your child
Parents love capturing their kids’ big moments, from first steps to birthday candles.
But a new study out of the U.K. shows many of those treasured images may be scanned, analyzed and turned into data by cloud storage services, and nearly half of parents don’t even realize it.
A survey of 2,019 U.K. parents, conducted by Perspectus Global and commissioned by Swiss privacy tech company Proton, found that 48% of parents were unaware providers like Google Photos, Apple iCloud, Amazon Photos and Dropbox can access and analyze the photos they upload.
TEENS ARE NOW USING AI CHATBOTS TO CREATE AND SPREAD NUDE IMAGES OF CLASSMATES, ALARMING EDUCATION EXPERTS
First lady Melania Trump, joined by President Donald Trump, delivers remarks before President Trump signed the Take it Down Act into law in the Rose Garden of the White House May 19, 2025, in Washington, D.C. (Chip Somodevilla/Getty Images)
These companies use artificial intelligence to sort images into albums, recognize faces and locations and suggest memories. While convenient, the same technology can also have more dangerous uses, like deepfake videos.
Professor Carsten Maple, a cybersecurity expert at the University of Warwick, warns that, with as few as 20 photos, AI tools can create a convincing digital clone of a person, including deepfake videos. These tools don’t need a high-resolution scan or video footage, just a handful of everyday pictures in the cloud.
“Parents are unwittingly opening their children up to possible exploitation by criminals who want to use their data for their own purposes,” Maple told the Edinburgh Evening News.
He added that even mundane photos, like a child at school or in the backyard, can reveal names and locations. Fifty-three percent of parents surveyed had no idea this was possible.
PROTECTING YOUR DAUGHTER FROM DEEPFAKES AND ONLINE ABUSE
President Donald Trump invited first lady Melania Trump to sign the new anti-revenge porn act she helped usher through to the finish line during a signing ceremony at the White House’s Rose Garden Monday afternoon. (Chip Somodevilla/Getty Images)
Over half of parents, 56%, have automatic photo uploads enabled, meaning their phones constantly send new images to the cloud without ever having to tap “upload.”
WHAT IS ARTIFICIAL INTELLIGENCE (AI)?
Even without deepfakes, data collection is extensive. Only 43% of parents knew cloud services collect metadata like time, date and location, and just 36% surveyed were aware that these companies analyze the contents of photos too.
Concern is catching up to convenience. Nearly three in four parents (72%) surveyed said photo privacy is important, and 69% acknowledged the risks of digital footprints left by storing family photos online.
First lady Melania Trump walks to a meeting to urge passage of the Take It Down Act by the U.S. Senate at the U.S. Capitol in Washington, DC, March 3, 2025. (Saul Loeb/AFP via Getty Images)
Though the study was conducted in the U.K., its findings apply globally. American families use the same technology platforms and face the same questions: Where are kids’ photos going? Who is looking at them? And what could they be turned into?
In the age of AI, a family photo isn’t just a memory, it’s also data which can be scanned, stored, sold and, increasingly, manipulated into deepfakes.
Perspectus Global did not immediately return Fox News Digital’s request for comment.
Ad-supported tiers are proving to be popular with streaming customers. New data from subscription analyst firm Antenna shows that 46 percent of Discovery Plus, Disney Plus, Hulu, HBO Max, Netflix, Paramount Plus, and Peacock subscribers in the US are paying for ad-supported plans, and that around 75 percent of subscribers have at least tried them.
Many streaming services have ad-supported tiers — HBO Max launched its $9.99 ad plan in 2021, followed by Netflix’s $6.99 and Disney Plus’s $7.99 plans in 2022, for example. But in its Q2 2025 State of Subscriptions report, Antenna notes that half of the big streaming platforms it analyzed didn’t offer an ad-supported plan two years ago, and only a third of subscriptions to services that did were for an ad plan. Comparatively, 71 percent of net subscriber additions over the last nine quarters have been driven by ad plans according to Antenna’s data, with no meaningful differences in demographic and loyalty compared to ad-free subscribers.
It’s a win-win for streaming companies that can reap the benefits of both additional advertising revenue and growth from providing more affordable memberships. Antenna reports that 65 percent of users who had subscribed to ad-supported plans were completely new to the streaming service, with users who had switched from pricer ad-free tiers accounting for only 11 percent of subscriptions.
Get to know this year’s invited runners for the Vermont City Marathon
Obituary for Virginia Letitia (Doak) Winston at Coffman Funeral Home and Crematory
Navy Yard residents call to lower DC's youth curfew
Overdose deaths decline in Wisconsin and the nation in 2024
DNR hears from community on Forks of Coal Natural Area “Master plan” – WV MetroNews
Why Marjorie Taylor Greene was ‘kicked out’ of the Freedom Caucus according to Rep. Buck
Colorado Rockies game no. 116 thread: Zac Gallen vs José Ureña
See it: Tesla crashes into Columbus convention center at 70 mph
Fox News Politics: Georgia the whole day through
Death of missing Oregon girl found in stream ruled homicide
Delaware's assisted suicide bill signed into law, making it the 11th state with such a statute
Belgium requests lifting of MEP immunity to investigate Huawei scandal
'Golden Dome' Missile Shield To Be 1st US Weapon In Space. All About It
Expert reveals how companies are rebranding 'toxic' DEI policies to skirt Trump-era bans: 'New wrapper'
EU reaches initial deal to lift economic sanctions on Syria: Reports
-
Technology1 week agoMexico is suing Google over how it’s labeling the Gulf of Mexico
-
Politics1 week agoDHS says Massachusetts city council member 'incited chaos' as ICE arrested 'violent criminal alien'
-
Education1 week agoA Professor’s Final Gift to Her Students: Her Life Savings
-
Politics1 week agoPresident Trump takes on 'Big Pharma' by signing executive order to lower drug prices
-
Education1 week agoVideo: Tufts Student Speaks Publicly After Release From Immigration Detention
-
News7 days agoAs Harvard Battles Trump, Its President Will Take a 25% Pay Cut
-
Culture1 week agoTest Yourself on Memorable Lines From Popular Novels
-
News1 week agoWhy Trump Suddenly Declared Victory Over the Houthi Militia