Churchill Claims Services Suffers Data Breach Affecting 2,610 Individuals
Churchill Claims Services Inc., a Florida-based insurance claims adjusting and investigation firm, disclosed a data breach impacting 2,610 individuals across the U.S., including 58 residents of Maine and 39 in Massachusetts. The incident was claimed by the threat group Securotrop, which announced on October 10, 2025, via the Tor network that it had exfiltrated 240 gigabytes of data from the company’s systems.
The stolen data reportedly included insured vehicle lists with client names and contact details, appraisal logs, profit margin analyses, employee phone numbers, compensation records, and scanned documents from executive and general divisions. Regulatory filings confirmed the exposure of Social Security numbers and government ID numbers.
Churchill Claims Services reported the breach to the Vermont Attorney General on April 28, 2026, and began notifying affected individuals in writing on April 27, 2026. In response, the company is offering 24 months of complimentary credit monitoring and identity theft protection through Cyberscout, including a $1 million identity theft insurance policy. Affected individuals can enroll using a unique code provided in their notification letter, with a 90-day enrollment window.
A dedicated call center (833-877-7557) was established for inquiries, operating Monday through Friday from 8 a.m. to 8 p.m. Eastern Time. The company is also providing proactive fraud assistance to support impacted individuals.
Source: https://www.claimdepot.com/data-breach/churchill-claims-services-2026
Churchill Claims Services cybersecurity rating report: https://www.rankiteo.com/company/churchill-claims-services
"id": "CHU1777480415",
"linkid": "churchill-claims-services",
"type": "Breach",
"date": "10/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '2610',
'industry': 'Insurance',
'location': 'Florida, USA',
'name': 'Churchill Claims Services Inc.',
'type': 'Insurance Claims Adjusting and Investigation '
'Firm'}],
'attack_vector': 'Exfiltration',
'customer_advisories': '24 months of complimentary credit monitoring and '
'identity theft protection through Cyberscout, '
'including a $1 million identity theft insurance '
'policy. Enrollment via unique code with a 90-day '
'window. Dedicated call center (833-877-7557) for '
'inquiries.',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '2610',
'personally_identifiable_information': ['Social Security '
'numbers',
'Government ID '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Insured vehicle lists with '
'client names and contact '
'details',
'Appraisal logs',
'Profit margin analyses',
'Employee phone numbers',
'Compensation records',
'Scanned documents from '
'executive and general '
'divisions']},
'date_publicly_disclosed': '2025-10-10',
'description': 'Churchill Claims Services Inc., a Florida-based insurance '
'claims adjusting and investigation firm, disclosed a data '
'breach impacting 2,610 individuals across the U.S. The '
'incident was claimed by the threat group Securotrop, which '
'announced exfiltrating 240 gigabytes of data from the '
'company’s systems. The stolen data included insured vehicle '
'lists, appraisal logs, profit margin analyses, employee '
'records, and scanned documents containing sensitive '
'information like Social Security numbers and government ID '
'numbers.',
'impact': {'data_compromised': '240 GB', 'identity_theft_risk': 'High'},
'ransomware': {'data_exfiltration': 'Yes'},
'references': [{'source': 'Regulatory filing'}],
'regulatory_compliance': {'regulatory_notifications': ['Vermont Attorney '
'General']},
'response': {'communication_strategy': 'Written notifications, dedicated call '
'center',
'third_party_assistance': 'Cyberscout'},
'threat_actor': 'Securotrop',
'title': 'Churchill Claims Services Data Breach',
'type': 'Data Breach'}