On September 10, 2024, Cunningham Group detected unauthorized access to its network, which persisted from September 6 to September 13, 2024. The breach exposed highly sensitive consumer data, including personally identifiable information (PII) such as names, addresses, Social Security numbers, driver’s license numbers, government-issued IDs, dates of birth, and credit/debit card details. Additionally, protected health information (PHI) including medical and health insurance records was compromised. The attack impacted at least 1,330 individuals across Texas, Massachusetts, and potentially California, though the total number may be higher.The stolen data poses severe risks of identity theft, financial fraud, and medical identity misuse, despite no confirmed misuse to date. The company responded by securing systems, engaging cybersecurity experts, and notifying law enforcement. Affected individuals were offered two years of free credit monitoring, identity restoration, and $1M in identity theft insurance via Experian. The breach’s severity stems from the combination of PII, PHI, and financial data exposure, alongside prolonged unauthorized access before detection.
Source: https://www.claimdepot.com/data-breach/james-h-cunningham-insurance-agency-2025
TPRM report: https://www.rankiteo.com/company/background-investigation-socal
"id": "bac907090225",
"linkid": "background-investigation-socal",
"type": "Breach",
"date": "9/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': '1,330+ (1,283 in Texas, 47 in '
'Massachusetts, additional '
'potential victims in '
'California)',
'industry': 'Insurance',
'location': ['Texas',
'Massachusetts',
'California (potential additional '
'victims)'],
'name': 'James H Cunningham Insurance Agency '
'(Cunningham Group)',
'type': 'Insurance Agency'}],
'customer_advisories': 'Notification letters sent via U.S. mail with '
'instructions for credit monitoring enrollment and '
'protective measures.',
'data_breach': {'data_exfiltration': 'Likely (files acquired by unauthorized '
'party)',
'number_of_records_exposed': '1,330+ (minimum confirmed; '
'total may be higher)',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High (PII, PHI, and financial data)',
'type_of_data_compromised': ['Names',
'Addresses',
'Social Security numbers',
'Driver’s license numbers',
'Government-issued ID numbers '
'(state ID cards, passport '
'numbers)',
'Dates of birth',
'Credit or debit card numbers',
'Financial account information',
'Protected Health Information '
'(PHI) including medical and '
'health insurance details']},
'date_detected': '2024-09-10',
'description': 'On Sept. 10, 2024, James H Cunningham Insurance Agency (doing '
'business as Cunningham Group) detected suspicious activity on '
'its computer network. An unauthorized party accessed the '
'agency’s network between Sept. 6, 2024, and Sept. 13, 2024, '
'potentially acquiring files containing sensitive consumer '
'information, including PII (names, addresses, SSNs, driver’s '
'license numbers, government-issued IDs, dates of birth, '
'credit/debit card numbers), financial account information, '
'and PHI (medical and health insurance details). The breach '
'affected at least 1,283 individuals in Texas and 47 in '
'Massachusetts, with additional potential victims reported to '
'the California Attorney General. The company responded by '
'securing systems, notifying law enforcement, and offering '
'affected individuals complimentary credit monitoring and '
'identity protection services through Experian IdentityWorks '
'Credit 3B.',
'impact': {'brand_reputation_impact': 'Severe (due to exposure of PII, PHI, '
'and financial data)',
'data_compromised': ['Personally Identifiable Information (PII)',
'Financial Account Information',
'Protected Health Information (PHI)'],
'identity_theft_risk': 'High (PII and financial data exposed, '
'though no evidence of misuse yet)',
'legal_liabilities': 'Potential (regulatory filings made to state '
'Attorneys General)',
'payment_information_risk': 'High (credit/debit card numbers '
'exposed)'},
'investigation_status': 'Ongoing (no evidence of misuse detected as of '
'disclosure, but risk remains)',
'recommendations': ['Affected individuals should enroll in the complimentary '
'credit monitoring and identity protection services '
'provided.',
'Review account statements and credit reports regularly '
'for suspicious activity.',
'Consider placing a fraud alert or security freeze on '
'credit files.',
'Follow guidance provided in the notification letters for '
'additional protective measures.'],
'references': [{'source': 'State regulatory filings (California, '
'Massachusetts, Texas Attorneys General)'},
{'source': 'Cunningham Group customer notification letters'}],
'regulatory_compliance': {'regulatory_notifications': [{'authority': 'California '
'Attorney '
'General',
'date': '2025-08-25'},
{'authority': 'Massachusetts '
'Attorney '
'General',
'date': '2025-08-25'},
{'authority': 'Texas '
'Attorney '
'General',
'date': '2025-08-26'}]},
'response': {'communication_strategy': 'Notification letters sent via U.S. '
'mail to affected individuals, '
'including enrollment instructions for '
'credit monitoring, resources for '
'fraud alerts/security freezes, and '
'contact information for credit '
'bureaus and the FTC',
'containment_measures': 'Systems secured immediately upon '
'detection',
'incident_response_plan_activated': 'Yes',
'law_enforcement_notified': 'Yes',
'recovery_measures': 'Complimentary credit monitoring and '
'identity protection services (Experian '
'IdentityWorks Credit 3B) offered to '
'affected individuals',
'third_party_assistance': 'Cybersecurity experts engaged'},
'threat_actor': 'Unknown, unauthorized party',
'title': 'Data Breach at James H Cunningham Insurance Agency (Cunningham '
'Group)',
'type': 'Data Breach'}