Genex Services Data Breach Exposes Social Security Numbers

Genex Services, a provider of managed care services in the insurance sector, experienced a data breach that exposed sensitive personal and health information. Affected individuals are consumers whose insurance claims Genex Services assisted with or are assisting with.

Genex discovered suspicious activity on its network on February 25, 2025. An investigation revealed that Genex was the victim of a phishing attack and an unauthorized actor had accessed certain files containing sensitive consumer data.

Both personally identifiable information (PII) and protected health information (PHI) were compromised in the data breach. Exposed information may include names, dates of birth, contact information, Social Security numbers, driver's license, health insurance information, medical information and financial information.

The data cybersecurity incident was disclosed to the California, Maine, Massachusetts, New Hampshire, Texas, and Vermont Attorney Generals' offices beginning on July 9, 2025. The total of 4,396 Americans have been impacted.

Genex Services' response

In addition to required state and federal disclosures, Genex has notified affected individuals by mail. Genex is offering 24 months of free identity monitoring services to all individuals impacted by the data breach.

If you receive a data breach notice from Genex Services or an insurance company, you may want to:

• Carefully review any notice or communication you receive and sign up for the free Kroll identity monitoring services provided by Genex.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For more information about the insurance services provided, visit the Genex Services website.