The data breach at Kelly & Associates Insurance Group has had a far-reaching impact, affecting over 413,000 individuals—much more than the initially reported 32,000. The breach involved the theft of sensitive personal information, including social security numbers and medical details. Kelly Benefits is actively notifying those impacted and is still assessing the full implications of the incident.
Keypoints :
- Kelly & Associates Insurance Group (Kelly Benefits) experienced a significant data breach, initially reported to affect 32,000 individuals, now revised to over 413,000.
- The breach occurred in December 2024, with attackers exfiltrating sensitive personal and financial information over a five-day period.
- Affected parties include various customers, such as Amergis, Beam Benefits, and CareFirst, and notifications have been sent to impacted individuals.
- The company concluded its review of the stolen files in early March, but the scope of the breach has continued to grow.
- It remains unclear if the incident was part of a ransomware attack as no group has claimed responsibility.
Read More: https://www.securityweek.com/kelly-benefits-data-breach-impact-grows-to-400000-individuals/