Consumer Data Breach Alert: Arthur J. Gallagher & Company | Console and associates, PC

Recently, Arthur J. Gallagher & Co. announced what appears to be a massive data breach, resulting in unauthorized access to the personal, identifying and financial information of hundreds of thousands of people. In September 2021, Arthur J. Gallagher & Co. sent a series of data breach notification letters to over two million people, advising affected parties that their information may have been viewed by an unauthorized party. However, the company first discovered the data breach in September 2020. This type of data breach initially affected the risk of identity theft and other financial loss. The Arthur J. Gallagher & Co. data breach is particularly surprising, given the number of people affected as well as the information compromised included full names, addresses, social security numbers and account information. financial support of those affected by the violation. .

If Arthur J. Gallagher & Co. recently sent you a data breach notification letter, it means that part of your personal data may have been viewed by an unauthorized third party. While receipt of this letter does not necessarily mean that the unauthorized party will attempt to steal your identity, use your credit cards or open fictitious accounts in your name; these are all possibilities. So, it’s crucial that you take the necessary steps to protect yourself, even if you haven’t noticed any signs of identity theft or fraud yet.

Is Arthur J. Gallagher & Co. financially responsible for a data breach?

When you entrusted your information to Arthur J. Gallagher & Co., you couldn’t expect your personal and financial details to end up in the hands of a complete stranger. Yet that seems to be what happened. Companies like Arthur J. Gallagher & Co. have a legal obligation to put in place protections against hackers and cyber attacks, and while most companies take this responsibility seriously, unfortunately this is not always the case. When a company mishandles your information and this results in a data breach, you may be able to hold the company financially responsible. If it is too early to tell whether Arthur J. Gallagher & Co. has taken the necessary precautions to protect your data, our data breach lawyers are currently investigating whether there is a possible class action lawsuit against Arthur J. Gallagher & Co. based on the recent data breach. If you have any questions about your ability to bring a class action lawsuit against Arthur J. Gallagher, it is important that you contact a data breach attorney as soon as possible.

Steps you can take to protect yourself from the Arthur J. Gallagher & Co. data breach

While there are many types of data breaches, they all share one thing in common: Your private information is compromised. Although data breaches do not always result in identity theft, information obtained through a data breach is often used for criminal purposes. If you have received a letter from Arthur J. Gallagher & Co. stating that you are among those whose information has been compromised, it is essential that you be proactive to avoid serious problems in the future. Consumer protection lawyers recommend that victims of a data breach take the following steps to protect themselves:

  1. Read the entire data breach letter from Arthur J. Gallagher & Co. to determine the extent of the information compromised;
  2. Keep a copy of the data breach notification letter for your records;
  3. Sign up for free credit monitoring offered by Arthur J. Gallagher & Co.;
  4. Change passwords for all online accounts;
  5. Frequently check your credit card and bank account statements for any signs of fraud or other unauthorized activity;
  6. Monitor your credit report carefully for any sudden or unexpected changes;
  7. Contact one of the three credit bureaus to ask them to add a fraud alert to your account; and
  8. Notify all banks and credit card companies of the data breach.

About Arthur J. Gallagher & Co.

Arthur J. Gallagher & Co. is an insurance and risk management company serving businesses of all sizes. The company also offers business consulting services to corporate clients. Arthur J. Gallagher & Co. has a global presence, operating in 150 countries and employing over 34,000 people. The company was founded by Arthur J. Gallagher in Chicago, Illinois in 1927. Most recently, Arthur J. Gallagher & Co. has generated more than $ 7 billion in annual revenues.

More information on the consumer data breach from Arthur J. Gallagher & Co.

On September 26, 2020, Arthur J. Gallagher & Co. first detected that a hack had installed ransomware on some of the company’s internal systems. After hiring a cybersecurity company, the company determined that an unauthorized party had accessed or acquired consumer data that was stored on the company’s network between June 3, 2020 and September 26, 2020.

In September 2021, the company released a slew of data breach notifications, all of which resulted from the ransomware incident. In total, there were at least seven different data breaches, which affected more than two million current and former customers. While Arthur J. Gallagher & Co. is still investigating the extent of the violation, compromised information may include:

  • First names,
  • Last names,
  • Full postal addresses,
  • Social security numbers,
  • driver’s license numbers, and
  • Credit card information,
  • Debit card information,
  • Other information on financial accounts.

Below is a copy of the data breach letter from Arthur J. Gallagher & Co. (the actual notice sent to consumers can be found here). Note that the items contained in “> ”May have been specific to each customer.

Dear [Consumer],

Arthur J. Gallagher & Co. (“Gallagher”) is an insurance broker providing services to its customers and partners, and is writing to you to notify you of an incident that may affect the confidentiality of some of your information. While we are not aware of any actual or attempted misuse of your information relating to this incident, we do want to provide you with details regarding the incident, our response, and the resources available to you to help protect your information from. possible misuse, if you feel it is appropriate to do so.

What happened?

On September 26, 2020, Gallagher detected a ransomware event affecting our internal systems. We quickly took all of our systems offline as a precaution, initiated response protocols, launched an investigation with the help of third-party cybersecurity and forensics specialists, implemented our business continuity plans to minimize disruption for our customers and ensured the continued security of our systems. We worked with cybersecurity and forensic specialists to determine what may have happened and what information may have been affected. Our investigation determined that an unknown party accessed or acquired data contained in certain segments of our network between June 3, 2020 and September 26, 2020. Although the investigation was able to confirm that certain systems were accessed, it did not could not confirm what information within these systems was actually accessed. Therefore, with great caution, Gallagher conducted a thorough review of the entire content of the affected systems. On May 24, 2021, Gallagher’s investigation confirmed that the impacted data included information relating to certain people. Gallagher continued to work through June 23, 2021 to notify our business partners and obtain contact details for those affected in order to provide accurate notice to affected parties.

What information was involved?

While we are not aware of any actual or attempted misuse of your information, we are providing this notice to you with great caution as certain information about you has been accessed or acquired during this event. The impacted information about you includes your .

What are we doing.

The privacy and security of information are among our highest priorities and Gallagher has implemented strict security measures to protect the information entrusted to us. After discovering this incident, we immediately took steps to protect the privacy and security of customer, partner and employee information. We also reviewed existing security policies and implemented additional measures and enhanced security tools to better protect information in our systems. We have also implemented additional safeguards and provide additional training to our employees on privacy and data security. We have reported this incident to law enforcement and regulatory authorities as required by law.

In addition to notifying you of this event, we also offer you free access to identity and credit check services for twenty-four months through Kroll. You can find information and instructions on how to activate these free services in the “Steps You Can Take to Protect Your Information” attached to this letter.

What can you do.

While Gallagher is not aware of any actual or attempted misuse of information as a result of this incident, we nonetheless encourage you to remain vigilant against incidents of identity theft and fraud, review your account and monitor your credit reports for any suspicious activity. . You can review the information in “Steps You Can Take to Protect Your Information”. You can also activate to receive the identity and credit control services that we make available to you. There is no charge to you for the cost of this service; however, you will need to activate this service.

For more information.

We recognize that you may have questions that are not addressed in this letter. If you have any additional questions, please call our dedicated hotline at 1-855-731-3320 (toll free), Monday to Friday, 8:00 a.m. to 5:30 p.m. Central Time.

We sincerely regret any inconvenience this incident may cause you. Protecting the information entrusted to Gallagher is very important to us, and we remain committed to protecting the information entrusted to us.

Comments are closed.