What Happened in the Landmark Admin Data Breach?
Landmark Admin, LLC, a third-party administrator that provides services to life insurance and annuity companies, filed a supplemental data breach notification with the Delaware Attorney General. The filing confirms that unauthorized parties accessed sensitive personal information stored within the company’s network. This Landmark Admin data breach has since prompted the company to notify affected individuals and regulators across multiple states.
According to the notification, the unauthorized access to Landmark Admin’s network occurred in May 2024. The company detected suspicious activity on its systems and moved quickly to contain the intrusion. As a result, Landmark Admin took affected systems offline and began working to determine the scope of the incident.
Following discovery, Landmark Admin brought in outside cybersecurity specialists to investigate. This forensic review aimed to determine which files were accessed and which individuals were affected. Because the investigation took time to complete, the company later issued this supplemental notification to update regulators and consumers with additional findings.
The supplemental nature of this filing suggests that Landmark Admin’s initial assessment of the breach expanded as the investigation progressed. In many cases like this, companies discover additional affected individuals or additional categories of exposed data after the first round of notifications goes out. This appears to be exactly what happened here.
Who was affected?
The Landmark Admin data breach affects individuals whose personal information was processed or stored by the company on behalf of its insurance and annuity clients. Because Landmark Admin works as a third-party administrator, the affected individuals are often policyholders, beneficiaries, or applicants connected to the insurance carriers that use Landmark’s services.
The exact number of individuals affected by this supplemental notification has not been publicly disclosed. However, third-party administrator breaches often affect large numbers of people because a single administrator processes data on behalf of many different insurance companies. As a result, the reach of this incident could extend well beyond Landmark Admin’s own direct customer base.
Given the nature of insurance and annuity administration, affected individuals could include people of various ages, including older adults with retirement or life insurance policies. In addition, beneficiaries listed on policies, who may not have a direct relationship with Landmark Admin, could also be impacted. This makes the true scope of affected individuals harder to estimate from the outside.
What Information Was Potentially Exposed?
The information exposed in this incident includes sensitive personal and financial details tied to insurance and annuity records. Because Landmark Admin processes policy administration data, the exposed information can be highly sensitive in nature.
- Full names
- Social Security numbers
- Financial account information
- Insurance policy or annuity details
- Dates of birth
- Other personal identifiers used in policy administration
This combination of data creates serious risk for affected individuals. For example, Social Security numbers paired with financial account details give criminals nearly everything they need to open new credit accounts, file fraudulent tax returns, or apply for loans in someone else’s name.
In addition, because insurance and annuity data often includes long-term financial planning information, fraudsters could specifically target victims with scams related to their policies or retirement accounts. This means affected individuals should remain alert not just to generic identity theft, but also to insurance-specific fraud attempts that reference real policy details.
What is the company doing?
In response to the breach, Landmark Admin secured its network and worked with cybersecurity experts to investigate the incident thoroughly. The company also reviewed the affected files to identify exactly what information was involved and which individuals needed to be notified.
Furthermore, Landmark Admin filed this supplemental notification with the Delaware Attorney General to update regulators on its findings. This follow-up filing indicates the company continued its investigation even after initial notifications went out, in order to provide affected individuals with complete and accurate information. Landmark Admin has also been notifying affected individuals directly as part of its ongoing response.
What Should Affected Individuals Do?
Monitor Your Credit Reports Closely
Affected individuals should check their credit reports regularly for any signs of unauthorized activity. Because Social Security numbers were involved in this breach, the risk of new account fraud is significant.
You can request a free credit report from each of the three major credit bureaus. Reviewing these reports carefully allows you to catch unfamiliar accounts or inquiries early, before they cause serious financial damage.
Consider a Fraud Alert or Credit Freeze
Because Social Security numbers and financial information were exposed, placing a fraud alert or credit freeze on your credit files is a strong protective step. A fraud alert requires lenders to verify your identity before extending credit in your name.
A credit freeze goes even further by blocking most access to your credit file entirely. As a result, it becomes much harder for identity thieves to open new accounts using your information. You can request either option directly through each credit bureau at no cost.
Watch for Phishing and Scam Attempts
Since this breach exposed personal details tied to insurance policies, affected individuals should be cautious of unexpected calls, emails, or texts referencing their coverage. Scammers often use real personal details to make fraudulent messages appear legitimate.
Therefore, avoid clicking links or sharing information in response to unsolicited messages. Instead, contact your insurance provider directly using a verified phone number if you have any concerns about your policy or account status.
Review Insurance and Financial Statements Regularly
Because policy and financial data were involved, it is wise to review your insurance statements and account activity on a regular basis. Look for any changes to beneficiary information, unfamiliar transactions, or unauthorized policy modifications.
If you notice anything unusual, contact your insurance carrier or financial institution immediately. Acting quickly can help limit any damage and give you a stronger record if you need to dispute fraudulent activity later.
Consult a Data Breach Attorney
Given the sensitive nature of the information exposed, affected individuals may want to speak with a data breach attorney about their legal options. An attorney can help you understand whether you qualify for compensation through a class action or individual claim.
Many attorneys offer free case evaluations for data breach victims. This means you can explore your options without any upfront cost, which is especially helpful while you are also dealing with the practical steps of protecting your identity.
More Information
Official data breach notification from Iowa Attorney General
Official data breach notification from Delaware Attorney General
Official data breach notification from California Attorney General
Official data breach notification from Oregon Department of Justice
