On June 19, 2025, Risk Management Services LLC (RMS), a Louisiana-based third-party administrator, detected a data breach exposing the personal and protected health information (PHI) of at least 22,300 individuals. An unauthorized actor infiltrated RMS’s internal systems around February 23, 2025, potentially accessing sensitive data, including full names, addresses, dates of birth, Social Security numbers, and medical records tied to workplace injuries. RMS serves as an administrator for insurance entities like LCTA Mutual Holding Co., LCTA Casualty Insurance Co., and LCTA Workers’ Comp, amplifying the breach’s reach. The company initiated containment measures, engaged cybersecurity experts, and notified law enforcement. Affected individuals were informed via mail starting August 29, 2025, with disclosures also submitted to the Maine Attorney General’s office on September 2, 2025. RMS offered free credit monitoring and identity theft protection through Epiq Privacy Solutions to mitigate risks. The breach underscores vulnerabilities in third-party administrative systems handling highly sensitive employee and customer data, raising concerns over long-term identity theft and fraud risks for victims.
Source: https://www.claimdepot.com/data-breach/rms-2025
TPRM report: https://www.rankiteo.com/company/risk-management-services-company
"id": "ris0662306090425",
"linkid": "risk-management-services-company",
"type": "Breach",
"date": "2/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '22,300 individuals',
'industry': 'Insurance/Administrative Services',
'location': 'Louisiana, USA',
'name': 'Risk Management Services LLC (RMS)',
'type': 'Third-party administrator'},
{'industry': 'Insurance',
'name': 'LCTA Mutual Holding Co.',
'type': 'Client (Insurance)'},
{'industry': 'Insurance',
'name': 'LCTA Casualty Insurance Co.',
'type': 'Client (Insurance)'},
{'industry': 'Insurance',
'name': 'LCTA Workers’ Comp',
'type': 'Client (Insurance)'}],
'customer_advisories': ['Mail notifications sent on 2025-08-29 with guidance '
'on credit monitoring and identity theft protection'],
'data_breach': {'data_exfiltration': 'Possible (accessed or acquired)',
'number_of_records_exposed': '22,300',
'personally_identifiable_information': ['Full names',
'Addresses',
'Dates of birth',
'Social Security '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)']},
'date_detected': '2025-06-19',
'date_publicly_disclosed': '2025-09-02',
'description': 'On June 19, 2025, Risk Management Services LLC (RMS), a '
'Louisiana-based third-party administrator, discovered a data '
'breach affecting the personal information of thousands of '
'individuals. An investigation revealed that on or around Feb. '
'23, 2025, an unauthorized actor gained access to RMS internal '
'systems and may have accessed or acquired personal and '
'protected health information. RMS provides administrative '
'services for LCTA Mutual Holding Co., LCTA Casualty Insurance '
'Co., and LCTA Workers’ Comp. Compromised information includes '
'full names, addresses, dates of birth, Social Security '
'numbers, and medical information related to reported '
'injuries. The breach impacted at least 22,300 individuals.',
'impact': {'data_compromised': ['Full names',
'Addresses',
'Dates of birth',
'Social Security numbers',
'Medical information related to reported '
'injuries'],
'identity_theft_risk': 'High (PII and PHI exposed)',
'systems_affected': ['Internal systems']},
'initial_access_broker': {'high_value_targets': ['PII and PHI data']},
'investigation_status': 'Completed (unauthorized access contained; '
'notifications sent)',
'recommendations': ['Sign up for free Epiq Privacy Solutions ID credit '
'monitoring and identity theft protection services',
'Monitor credit reports and financial accounts for '
'unusual activity',
'Be alert for phishing emails or phone calls using '
'exposed information',
'Consider placing a fraud alert or credit freeze with '
'major credit bureaus'],
'references': [{'source': 'Risk Management Services LLC'},
{'date_accessed': '2025-09-02',
'source': "Maine Attorney General's Office Disclosure"}],
'regulatory_compliance': {'regulatory_notifications': ['Maine Attorney '
"General's office "
'(2025-09-02)']},
'response': {'communication_strategy': ['Mail notifications to affected '
'individuals (sent on 2025-08-29)',
'Disclosure to Maine Attorney '
"General's office (2025-09-02)"],
'containment_measures': ['Unauthorized access contained'],
'incident_response_plan_activated': True,
'law_enforcement_notified': True,
'third_party_assistance': ['Cybersecurity experts']},
'threat_actor': 'Unauthorized actor',
'title': 'Risk Management Services LLC (RMS) Data Breach',
'type': 'Data Breach'}