Cyber Incident Victim: American Armed Forces Mutual Aid Association

On January 29, 2021, the American Armed Forces Mutual Aid Association detected suspicious activity within its systems. The Virginia-based nonprofit organization, which provides insurance and benefits to military personnel, initiated an investigation that determined unauthorized actors first accessed certain systems on January 28. The intruders viewed and removed files during this breach. AAFMAA completed its forensic examination on February 20, concluding that personal information belonging to 161,621 individuals had been potentially compromised. The exposed data included full names, physical addresses, Social Security numbers, and bank account details. No evidence of data misuse had been identified at the time of the investigation's conclusion. The association maintained operations throughout the incident response period while working to secure affected systems.

AAFMAA began notifying impacted individuals via mailed letters on March 5, 2021, approximately five weeks after discovering the breach. The notifications disclosed the specific types of compromised personal information and outlined protective measures available to victims. As remediation, the organization offered all affected persons 24 months of complimentary credit monitoring services. In his notification letter, AAFMAA President Michael J. Meese emphasized the association's 142-year history of service to military families and reiterated commitments to both information security and continued benefit provision. The organization implemented additional security measures following the incident but did not disclose specific technical details regarding the attack methodology or system vulnerabilities exploited. No operational disruptions to insurance services or member benefits were reported as a direct consequence of the breach.