Dominion National announced the discovery of a nearly decade long breach involving unauthorized access to its servers.
On April 24, the investigation of an internal alert revealed that the unauthorized party may have accessed some of the firm’s computer servers as early as August 25, 2010, according to a notice of data security incident posted to the firm’s site.
The compromised data included enrollment and demographic information, personal information for producers who placed Dominion National and Avalon vision policies, and healthcare providers participating in the insurance programs.
Among the compromised information were names, addresses, email addresses, dates of birth, Social Security numbers, member ID numbers, group numbers and subscriber numbers.
Upon learning of the incident, researchers cleaned the affected servers and implemented enhanced monitoring and alerting software. Dominion National began mailing notification letters to potentially affected individuals on June 21, 2019, and has established a dedicated incident response line to answer any questions.