The Maine Office of the Attorney General disclosed a data breach at Progressive Northwestern Insurance Company, where an employee fraudulently used another individual’s identity to gain employment. Between **October 26, 2023, and April 19, 2024**, the imposter accessed sensitive customer data, including **driver’s license numbers, Social Security numbers, payment card details, and financial account information**. The breach impacted **14 Maine residents**, exposing them to potential identity theft and financial fraud. In response, Progressive is providing **two years of free credit monitoring and identity theft restoration services** via Kroll to mitigate risks. The incident highlights internal security failures, as the misuse of credentials went undetected for nearly six months, allowing unauthorized access to highly confidential customer records. The compromised data could facilitate fraudulent activities, financial losses, or long-term reputational damage for affected individuals and the company.
TPRM report: https://www.rankiteo.com/company/progressive-insurance
"id": "pro1014090725",
"linkid": "progressive-insurance",
"type": "Breach",
"date": "10/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '14 (Maine residents)',
'industry': 'Insurance',
'location': 'USA (Maine residents affected)',
'name': 'United Financial Casualty Company',
'type': 'Insurance Company'},
{'customers_affected': '14 (Maine residents)',
'industry': 'Insurance',
'location': 'USA (Maine residents affected)',
'name': 'Progressive Northwestern Insurance Company',
'type': 'Insurance Company'}],
'attack_vector': 'Insider Threat (Fraudulent Employment via Identity Theft)',
'customer_advisories': 'Offer of 2 years free credit monitoring and identity '
'theft restoration via Kroll',
'data_breach': {'data_exfiltration': 'Likely (employee had access to data)',
'number_of_records_exposed': '14 (Maine residents)',
'personally_identifiable_information': ['Social Security '
'numbers',
'Driver’s license '
'numbers',
'Payment card numbers',
'Financial account '
'numbers'],
'sensitivity_of_data': 'High (SSNs, financial account '
'numbers, driver’s license numbers)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Financial Data']},
'date_publicly_disclosed': '2024-06-07',
'description': "An employee misused someone else's identity to obtain "
'employment and gained unauthorized access to sensitive '
'customer information, including driver’s license numbers, '
'Social Security numbers, payment card numbers, and financial '
'account numbers. Fourteen Maine residents were affected.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'insider breach and identity theft',
'data_compromised': ['Driver’s license numbers',
'Social Security numbers',
'Payment card numbers',
'Financial account numbers'],
'identity_theft_risk': 'High (SSNs, financial data exposed)',
'payment_information_risk': 'High (payment card numbers exposed)'},
'initial_access_broker': {'entry_point': 'Fraudulent employment using stolen '
'identity',
'high_value_targets': 'Customer PII and financial '
'data'},
'investigation_status': 'Disclosed (ongoing or completed not specified)',
'motivation': 'Unauthorized access to sensitive data (potential financial '
'gain or fraud)',
'post_incident_analysis': {'root_causes': ['Insufficient identity '
'verification during hiring',
'Lack of monitoring for insider '
'threats']},
'references': [{'date_accessed': '2024-06-07',
'source': 'Maine Office of the Attorney General'}],
'regulatory_compliance': {'regulatory_notifications': 'Maine Office of the '
'Attorney General'},
'response': {'communication_strategy': 'Public disclosure via Maine Office of '
'the Attorney General',
'incident_response_plan_activated': 'Likely (given public '
'disclosure and remediation '
'offers)',
'remediation_measures': ['Offering 2 years of free credit '
'monitoring',
'Providing identity theft restoration '
'services via Kroll'],
'third_party_assistance': 'Kroll (for credit monitoring and '
'identity theft restoration)'},
'threat_actor': 'Malicious Insider (Employee using stolen identity)',
'title': 'Data Breach at United Financial Casualty Company and Progressive '
'Northwestern Insurance Company',
'type': 'Data Breach (Insider Threat / Identity Misuse)',
'vulnerability_exploited': 'Lack of robust identity verification during '
'hiring process'}