More than 2.6 million individuals were impacted by two data breaches at insurance administrator Landmark Admin and software solutions provider Young Consulting, according to fresh filings with regulatory agencies.
In October 2024, Landmark Admin notified roughly 800,000 people that it fell victim to a ransomware attack that also included the theft of sensitive data. The company said it flagged the unauthorized access to its systems on May 13, but was breached again on June 17, while the investigation was in progress.
Personal information such as names, addresses, dates of birth, drivers’ license numbers, government ID and passport numbers, Social Security numbers, medical and health insurance information, and financial information was stolen in the attack.
In a filing with the Maine Attorney General’s Office last week, the third-party insurance administrator revealed that stolen credentials for its VPN service were used in the attack.
The company also said that it could not determine whether the files stolen from its environment indeed contained personal information, and that it has no evidence that personal information was exfiltrated.
“Although the investigation found data had been exfiltrated, it was unable to identify which specific files/folders were exfiltrated after the threat actor re-entered Lankmark’s systems.”
Landmark Admin also told the Maine AGO that the incident likely impacted 1,613,773 individuals, more than double than estimated in October 2024.
Last week, Young Consulting too updated its estimated impact of a data breach it suffered in April 2024, informing the Maine AGO that 1,020,108 people were potentially affected, up from the initial estimate of 954,177.
The company says that it has been conducting a comprehensive review of the compromised data, and that it determined in January 2025 that the incident affected more individuals than initially estimated.
“The personal information that could have been subject to unauthorized access includes name, Social Security number, tax ID number, and health information,” Young Consulting told the Maine AGO.
In May last year, the BlackSuit ransomware group claimed the attack on Young Consulting and has since made the data allegedly stolen from the company available for download.
Related: 1.6 Million Impacted by Data Breach at Laboratory Services Cooperative
Related: 500,000 Impacted by Pennsylvania Teachers Union Data Breach
Related: 170,000 Impacted by Data Breach at Chord Specialty Dental Partners
Related: Numotion Data Breach Impacts Nearly 500,000 People