Ryan Specialty Group LLC said on Friday that its email system was compromised in April, and personal information, including social security numbers and medical information, could have been obtained.
The Chicago-based specialty broker, who completed a first public offering last month, said in a statement that it became aware of "unusual activity related to some employees' email accounts" on April 17. Ten days later, the company decided that certain accounts had been opened without permission between April 4 and April 20.  The company completed a "manual review" of the contents of e-mail accounts on June 30, according to the statement.
"It can not be confirmed if information about individuals was actually reached or displayed during this event," Ryan Specialty said.
Information that was available includes name, driver's license number, social security number, financial account information, passport number, medical information, health insurance number, state-issued identity number, tax identification number, date of birth and e-mail username and password, according to the statement.
Ryan said that it has taken steps to secure accounts, review its cybersecurity policy, and provide credit monitoring and identity protection services to victims.
The infringement is the latest in a series of attacks on insurance companies. In June, Marsh & McLennan revealed Cos. Inc. that it suffered a data breach in April. in March, CNA Financial Corp. was hit. of a ransomware attack, which it reportedly paid $ 40 million to solve; and in September 2020, Arthur J. Gallagher & Co. was the target of a ransomware attack.
A report released by Accenture PLC earlier this month said that the insurance industry was the most common focus on ransomware attacks in the first half of this year.