IAMS Data Breach Leaks Sensitive Personal Info, Including Social Security Numbers

On September 19, 2024, Insurance Agency Marketing Services, Inc. (IAMS) disclosed a significant data breach that occurred between March 1 and May 3, 2024. During this period, an unauthorized third party remotely accessed certain IAMS computer systems. As a result, sensitive personal information may have been accessed or acquired. The breach affected approximately 5,788 individuals in Texas alone, with additional impacts in other states.

The exposed information includes a wide range of personal data, which is particularly concerning given the nature of the information:

• Name of individual
• Address
• Social Security Number
• Driver’s License number
• Government-issued ID number (e.g., passport, state ID card)
• Financial Information (e.g., account number, credit or debit card number)
• Medical Information
• Health Insurance Information
• Date of Birth

The breach was reported to the Attorney General's offices in several states, including California, Texas, and Massachusetts.

IAMS's Response

Upon discovering the breach, IAMS took immediate action to address the situation. The company engaged third-party cybersecurity experts to investigate and remediate the incident, ensuring that the security of their systems was thoroughly assessed and enhanced.
IAMS also reported the breach to the Federal Bureau of Investigation to assist in the investigation. To support those affected, IAMS is offering identity theft protection services through CyEx, including at least 12 months of single bureau credit monitoring and identity theft recovery services. Affected individuals can enroll in these services by visiting app.identitydefense.com or by calling CyEx at 1-866-622-9303.

Protecting Yourself After the Data Breach

If you have been affected by this data breach, it is crucial to take proactive steps to protect your personal information. Here are some recommended actions:

1. Enroll in Credit Monitoring: Take advantage of the credit monitoring services offered by IAMS through CyEx. This will help you detect any suspicious activity on your credit report.
2. Review Your Credit Reports: Regularly check your credit reports for any unauthorized transactions or accounts. You are entitled to one free copy of your credit report every 12 months from each of the three major consumer reporting agencies.
3. Place Fraud Alerts: Consider placing a fraud alert on your credit file. This will notify creditors to take extra steps to verify your identity before opening new accounts in your name.
4. Consider a Security Freeze: A security freeze can prevent new creditors from accessing your credit report, making it harder for identity thieves to open accounts in your name.
5. Stay Vigilant: Monitor your financial accounts and report any suspicious activity immediately. You can also contact the Federal Trade Commission for additional guidance on preventing identity theft.