Atlantic Coast Life Insurance Data Breach Exposes Policyholders' SSNs & Medical Information

On April 15, 2025, Atlantic Coast Life Insurance Co. discovered suspicious activity on its computer network. A thorough investigation revealed that an unauthorized actor had gained access to certain company systems between April 7 and April 15, 2025.

During this period, the intruder may have accessed or acquired files containing sensitive information belonging to current and former policyholders, certificate holders, beneficiaries, and other individuals who interacted with the company or its affiliates.

The company completed its review of the impacted files on Dec. 17, 2025, confirming that personal and sensitive data was exposed.

According to the official data breach disclosure on the company’s website, the information varied by individual but included names, Social Security numbers, individual taxpayer identification numbers, financial account information, dates of birth, and medical or health insurance information.

This means both personally identifiable information (PII) and protected health information (PHI) may have been compromised. The company has not specified the exact number of individuals affected, but the breach potentially impacts anyone with a relationship to Atlantic Coast Life Insurance Co. or its affiliates during the relevant time frame.

Atlantic Coast Life Insurance Company's response

Upon discovering the suspicious activity, Atlantic Coast Life Insurance Co. immediately secured its network and launched an investigation with the help of cybersecurity experts. The company isolated affected systems and began a detailed review of the files that may have been accessed. As a precaution, they are notifying affected individuals by mail where possible and have posted a public notice for those whose contact information may be outdated.

To support those impacted, the company is offering one year of free credit monitoring and identity restoration services through IDX. Individuals who did not receive a mailed notification but believe they may be affected can call the dedicated assistance line at 844-419-5502, Monday through Friday, 9 a.m. to 9 p.m. Eastern time, except U.S. holidays.

Given the nature of the breach and the types of information involved, affected individuals should remain vigilant for signs of identity theft or fraud. It is recommended to:

• Review account statements and credit reports for unauthorized activity
• Consider placing a fraud alert or credit freeze with the major credit bureaus
• Take advantage of the free credit monitoring services offered