.png)
Cove Risk Services Data Breach Lawsuit Investigation
Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the Cove Risk Services, LLC data breach.
If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.
Who is Cove Risk Services?
Cove Risk Services is an insurance company based in Braintree, Massachusetts. The company specializes in administering self-insurance groups that provide workers’ compensation coverage to more than 5,000 businesses across Massachusetts and New Hampshire.
These self-insurance groups are associations of employers, typically from the same industry and state, that pool resources to provide workers’ compensation coverage for their members.
What was the May 2025 Data Breach?
In early May 2025, Cove Risk Services discovered a significant data breach. On May 5, 2025, the company experienced a network disruption that led to an immediate investigation. It was determined that unauthorized access or acquisition of data occurred between May 3 and May 5, 2025. The company completed its review of the affected data on Nov. 10, 2025, and began notifying impacted individuals on Dec. 12, 2025.
This breach exposed the sensitive personal information of 49,385 individuals in the United States, including 182 residents of Maine.
What Types of Information were Exposed?
The types of information that may have been exposed include:
- Names
- Social Security numbers
- Dates of birth
- Driver’s license or state-issued identification numbers
- Health insurance information
- Medical information
- Financial account information
- Passport numbers
What Rights do I Have?
If you received a notification from Cove Risk Services, you have important rights and options to protect yourself. The company has offered 12 months of complimentary credit monitoring and identity protection services through Cyberscout, a TransUnion company. To enroll, visit https://bfs.cyberscout.com/activate and use the unique code provided in the notification letter. Enrollment must be completed within 90 days of receiving the letter.
In addition to enrolling in credit monitoring, it is wise to remain vigilant by regularly reviewing credit reports and financial account statements for any suspicious activity. Under U.S. law, everyone is entitled to one free credit report per year from each of the three major credit reporting bureaus: TransUnion, Experian, and Equifax.
You also have the right to place a fraud alert or credit freeze on your credit file at no cost. A fraud alert requires businesses to verify your identity before issuing new credit, while a credit freeze prevents credit bureaus from releasing your credit report without your authorization. This can help prevent new accounts from being opened in your name.
If you suspect you are a victim of identity theft, you should file a report with law enforcement, your state attorney general, and the Federal Trade Commission (FTC).
May I be Entitled to Compensation?
If your information was compromised in the Cove Risk Services data breach, you may be entitled to compensation. Lawyers are ready to help affected individuals understand their rights and pursue claims for damages related to the exposure of their sensitive information.
To find out if you qualify and to join a potential lawsuit, complete the below form. Taking action now can help protect your rights and hold those responsible accountable.
.svg)