Charles River Insurance Data Breach Exposes SSNs and Medical Records

Charles River Insurance Brokerage Inc., an independent insurance agency based in Framingham, Massachusetts, disclosed a data breach that involved a ransomware attack.

The breach was disclosed to the Massachusetts Office of Consumer Affairs and Business Regulation on Dec. 19, 2025, with 232 Massachusetts resident reported as affected.

What happened in the Charles River Insurance data breach

On April 2, 2026, the ransomware group known as Akira posted on the Tor network, claiming it had obtained 63 gigabytes of data from Charles River Insurance.

The compromised data reportedly includes detailed personal information belonging to both employees and customers of the company.

The types of personally identifiable information reportedly exposed include passports, driver's licenses, Social Security numbers, home addresses, phone numbers and email addresses. The Akira group also claimed the stolen data includes detailed financial records, payment details and project-related data.

At this time, the only confirmed information types to have been exposed include Social Security numbers and medical records.

Charles River Insurance's response to the breach

Details about how Charles River Insurance has responded to this incident are limited in the disclosures reviewed for this report. As of April 4, 2026, specific information about the company's investigation efforts, its timeline for notifying affected consumers and any protective services being offered to affected individuals was not available in the reviewed filings.

Individuals who are or have been customers or employees of Charles River Insurance should consider taking steps to protect themselves. It is advisable not to wait for a formal notification letter before acting to safeguard personal and financial information.

Individuals who want to learn more about this incident or who have questions about whether their data was affected can contact Charles River Insurance directly. The company's Framingham office can be reached at 508-656-1400 and its Leominster office at 978-343-6946.

Steps to take if your information was exposed

• Place a fraud alert or credit freeze with Equifax (1-800-525-6285), Experian (1-888-397-3742) and TransUnion (1-800-680-7289) to help prevent anyone from opening new credit accounts using stolen personal information.
• Request free credit reports at AnnualCreditReport.com and review them carefully for unfamiliar accounts, hard inquiries or other suspicious activity that could indicate identity theft.
• Monitor bank and financial accounts closely by reviewing statements and transaction histories regularly for unauthorized charges, withdrawals or changes to account details.
• Report a potentially compromised passport to the U.S. Department of State Bureau of Consular Affairs if there is concern that passport information was included in the stolen data.
• File an identity theft report with the Federal Trade Commission at IdentityTheft.gov if any signs of identity misuse are detected, such as unfamiliar accounts or unexpected collection notices.
• Be cautious of phishing attempts that reference Charles River Insurance or this data breach by name, as criminals sometimes use real breach events to craft convincing scam emails, phone calls or text messages designed to steal additional personal information.