Data Breach at Diversified Benefit Services Insurance Marketing Exposes SSNs

On Aug. 7, 2025, Diversified Benefit Services Insurance Marketing, Inc. (DBS) detected suspicious activity in its email environment, leading to a data breach which exposed PHI and PII.

According to the notice filed with the California Attorney General on Jan. 21, 2026, the company secured its systems and launched an investigation with external cybersecurity experts. The investigation revealed that an unauthorized actor had gained access to DBS’ email system and potentially downloaded certain emails and files.

The types of information exposed includes names, Social Security numbers, medical information, treatment details, health insurance information, and health insurance policy numbers.

The attack was limited to the email environment, but the unauthorized actor’s ability to download emails and files means that affected individuals face a heightened risk of misuse of their sensitive data.

The company did not specify the exact number of individuals impacted in its public disclosure.

Diversified Benefit Services Insurance Marketing's response

In response to the breach, DBS secured its email environment and engaged outside cybersecurity experts to investigate. The company conducted a comprehensive review to identify affected individuals and worked to send notification letters.

To support those impacted, DBS is offering complimentary credit monitoring services through Cyberscout, a TransUnion company specializing in fraud assistance and remediation. These services include single bureau credit monitoring, credit reports and credit scores for 12 months from the date of enrollment. Proactive fraud assistance and identity protection support are also being provided.

Affected individuals must enroll within 90 days of receiving their notification letter to take advantage of these services.

Given the nature of the breach, individuals are encouraged to:

• Enroll in the free credit monitoring and identity protection services provided by DBS
• Remain vigilant by reviewing account statements and credit reports for suspicious activity
• Consider placing a fraud alert or security freeze on credit files
• Report any suspected identity theft to law enforcement and the Federal Trade Commission

For more information or assistance, affected individuals can contact Cyberscout at 1-800-405-6108, Monday through Friday from 5 a.m. to 5 p.m. Pacific Time.