Benefits and payroll solutions firm Kelly & Associates Insurance Group (dba Kelly Benefits) has informed authorities that a recent data breach impacts more than 550,000 people.
The company revealed in April that hackers had gained access to its systems in December 2024, and an investigation had shown that the threat actor managed to steal files storing personal information.
The incident resulted in the theft of information such as name, date of birth, Social Security number, tax ID number, medical information, health insurance information, and financial account information.
Kelly Benefits is notifying impacted individuals on behalf of more than 40 affected customers, including Aetna Life Insurance Company, Amergis, Beam Benefits, Beltway Companies, CareFirst, The Guardian Life Insurance Company of America, Fidelity Building Services Group, Intercon Truck of Baltimore, Humana Insurance ACE, Merritt Group, Publishers Circulation Fulfilment, Quantum Real Estate Management, United Healthcare, and Transforming Lives.
Data breach reports submitted by Kelly Benefits to the Maine Attorney General’s Office since early April show that the number of impacted individuals has steadily increased as the company’s investigation progressed.
It started with 32,000 impacted and then jumped to 260,000. By early May, the company had determined that the data breach affected over 410,000 people, and by late May the number reached 488,000.
The latest update submitted to the Maine AGO, which Kelly Benefits says is the last, shows that the cybersecurity incident has impacted more than 553,000 individuals.
It’s still unclear who is behind the attack on Kelly Benefits. No known ransomware group appears to have taken credit for the hack.
Related: Qantas Data Breach Impacts Up to 6 Million Customers
Related: 263,000 Impacted by Esse Health Data Breach
Related: Ahold Delhaize Data Breach Impacts 2.2 Million People
