An attack on the Nationwide Insurance computer network could affect the personal information of an estimated 1.1 million customers of the Columbus, Ohio-based insurer and one of its affiliates, Allied Insurance.
In a letter to policyholders identified by the carrier as possibly affected by the Oct. 3 data breach, Nationwide informed them that the information accessed by the hackers includes names, date of birth, Social Security numbers, and driver's license information both for customers and those who sought insurance quotes. Nationwide reports there is no evidence that any medical information or credit card account information was stolen in the attack
A copy of the statement was posted on the Nationwide website and in it the insurer apologizes for the data breach.
"We want to make you aware that a portion of our computer network was criminally attacked," the notice states. "We are very sorry that this situation has occurred. Protecting the privacy and security of consumers' information is a top priority for us, and we want to assure you that we have taken steps that will prevent this type of attack from happening again."
Nationwide claims it is unaware of any misuse of consumers' information, but is encouraging those affected to take several steps that the insurer is offering those affected, including a credit monitoring and identity theft protection product it is offering to them at no charge for one year.
Each notified individual will be provided enrollment instructions. The product, which will be offered through Nationwide's partnership with Equifax, will provide individuals with a notification of any changes to their credit information, up to $1-million identity fraud expense coverage, and access to their credit report, according to the insurer.
Nationwide reports the attack occurred on October 3. The company discovered the attack that day, and took immediate steps to contain the intrusion, according to Nationwide. An internal investigation determined on October 16, that the perpetrator had likely stolen some personal information from the carrier's systems.
On November 2, Nationwide reports it received confirmation of the identities and addresses of the individuals whose personal information was believed to be compromised.
Nationwide reported the attack to law enforcement authorities, who are investigating the incident. The insurer also retained a third-party expert to analyze the impacted data and work with Nationwide to identify specifically whose personal information was compromised as quickly as possible.
"We are very sorry for this situation and are committed to enhancing our defenses against these kinds of attacks," the statement reads. "Your confidence in our ability to safeguard your information is very important to us."
Want to continue reading?
Become a Free PropertyCasualty360 Digital Reader
Your access to unlimited PropertyCasualty360 content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Breaking insurance news and analysis, on-site and via our newsletters and custom alerts
- Weekly Insurance Speak podcast featuring exclusive interviews with industry leaders
- Educational webcasts, white papers, and ebooks from industry thought leaders
- Critical converage of the employee benefits and financial advisory markets on our other ALM sites, BenefitsPRO and ThinkAdvisor
Already have an account? Sign In Now
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
