Cyber Incident Victim: Erie Indemnity Company

On June 7 2025 Erie Indemnity Company identified unusual network activity, which it determined to be the result of an information security event. Upon learning of the activity the company activated its incident response protocols and took immediate action to safeguard its systems. The company also notified law enforcement and began working with them to address the situation. Erie Indemnity stated that it continued to take protective measures while conducting a forensic analysis with the assistance of leading third‑party cybersecurity experts to gain a full understanding of the event.

The SEC filing notes that, given the recency of the event, the investigation and response remain ongoing and the full scope, nature, and ultimate impact on the company are not yet known. The filing includes forward‑looking statements about the potential impact of the information security event, the scope of the investigation, and the company’s plans, objectives, and expectations relating to its operations or financial condition. Erie Indemnity cautions that these forward‑looking statements are subject to risks and uncertainties and that the company undertakes no obligation to publicly update or revise them.

Erie Insurance confirmed that outages affecting its customer portal and business operations stemmed from the cybersecurity incident over the weekend. The company has not provided additional details regarding the nature of the attack or whether any data was stolen. As a precaution, Erie has advised its customers to be vigilant of malicious payment requests received via email or phone calls amid the outage. The company emphasized the prompt activation of its incident response protocols following the intrusion and said it is working with law enforcement and leading cybersecurity experts to resolve the matter.