CRC Insurance Data Breach Affects 1,701 Texans

CRC Insurance Services, wholesale insurance broker and subsidiary of CRC Group, experienced a data breach. Exposed data included names, addresses, Social Security numbers, driver’s license numbers, dates of birth, medical information, and other personal details. Both personally identifiable information (PII) and, for some individuals, protected health information (PHI) were involved.

The data breach was disclosed to the Massachusetts Attorney Generals office on June 27, 2025 and the Texas Attorney General's office on July 1, 2025. Affected individuals include 1,701 in Texas and 175 Massachusetts. The total number of consumers affected by the cybersecurity incident has not been released.

CRC Insurance Services' response

In additional to required state disclosures, CRC Insurance Services will work to identify and notify affected individuals with the data breach details.

If you believe your personal or protected health information may have been compromised in this breach:

• Carefully review any notice or communication you receive from CRC Insurance Services or CRC Group.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For more details about CRC Insurance Services, visit the company’s website.