Elephant Insurance Reports Data Breach

May 10, 2022

Virginia-based direct-to-consumer personal lines insurer Elephant Insurance reports that it experienced a cyber incident beginning in late March and as of April 25 its review had been able to identify consumers whose data may have been viewed or copied from its network.

The company determined that the breach occurred between March 26, 2022 and April 1, 2022. The affected information includes name, driver’s license number and date of birth.

The company did not disclose the number of affected persons. Elephant sells insurance in eight states: Georgia, Illinois, Indiana, Maryland, Ohio, Tennessee, Texas and Virginia.

The information either relates to current or previous Elephant Insurance customers or is information the firm received as part of providing a quote for auto or other insurance coverage. Elephant said it is providing information about the incident, its response, and resources available to affected individuals including access to credit monitoring services.

The company said it took prompt measures to secure its systems and investigate the incident. It said it has reported the event to federal law enforcement and is notifying appropriate state regulatory agencies.

Elephant Insurance is a brand of Elephant Insurance Co., Elephant Insurance Services and Grove General Agency. Elephant is wholly-owned subsidiary of Admiral Group, plc., a U.K. insurer.

Topics Cyber Data Driven

Was this article valuable?

Here are more articles you may enjoy.