Cyber Incident Victim: Gannon Associates Insurance Agency
Date:
Jun 2022
Location:
United States of America
Summary
Gannon Associates Insurance Agency experienced a data breach when an unauthorized party accessed its network, potentially compromising sensitive consumer information including full names, Social Security numbers, and driver’s license numbers. The company secured its systems, initiated an investigation with third-party cybersecurity specialists, and confirmed unauthorized access to files containing customer data from both its own clients and certain business partners. After identifying affected individuals, the agency notified them of the incident. The Pennsylvania-based insurance provider offers various personal and commercial insurance products and maintains significant operational scale.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On June 14, 2022, Gannon Associates Insurance Agency detected an unauthorized party potentially accessing its computer systems, prompting immediate network security measures and an internal investigation to determine the incident's cause and scope. By June 20, 2022, third-party cybersecurity experts confirmed the unauthorized access and exfiltration of files containing sensitive consumer data belonging to both Gannon Associates customers and customers of certain business clients. The compromised information included full names, Social Security numbers, and driver’s license numbers, with variations in impacted data elements across individuals. Gannon Associates conducted a comprehensive review of all affected files between June 20 and July 26, 2022, to identify specific compromised records and corresponding individuals. The company completed this forensic analysis and began mailing individualized data breach notifications to all affected parties on July 26, 2022, exactly six weeks after initial detection.
The breach exposed victims to multiple documented fraud risks including unauthorized credit card applications, fraudulent loan acquisitions, illicit tax refund claims using stolen Social Security numbers, and the creation of fraudulent utility accounts. Additional confirmed risks involved medical identity theft where attackers could obtain healthcare services using victims' personal information, potentially corrupting medical records and generating illegitimate bills. Founded in 1973 and operating as Associated Insurance and Financial Services, LLC, the Pennsylvania-based agency managed sensitive data for both individual and business clients across auto, home, health, and commercial insurance products prior to the incident. Gannon Associates employed 95 staff and generated $77 million in annual revenue at the time of the breach. The company did not disclose technical details regarding the attack vector, duration of unauthorized access, or total number of affected individuals beyond confirming the compromise of government-issued identifiers and personally identifiable information. No ransomware deployment, financial demands, or data deletion activities were referenced in the company's state filings or public breach notifications.