Particle.news
Download on the App Store
7 ARTICLES
·
2h ago

Farmers Insurance Says Third-Party Breach Exposed Data of Over 1 Million Customers

Researchers tie the vendor compromise to a Salesforce-focused vishing attack that abused OAuth integrations.

The Farmers Insurance logo is displayed at company headquarters on August 29, 2023 in Woodland Hills, California
Image
Image
Image

Overview

  • Farmers began notifying affected individuals on August 22 after a May 29 intrusion at a third-party vendor was flagged on May 30.
  • Exposed information includes names, addresses, dates of birth, driver’s license numbers, and in some cases the last four digits of Social Security numbers.
  • Public records list 1,071,172 people affected, while a sample notice cites 1,111,386, a discrepancy that remains unresolved.
  • The company says it has seen no evidence of misuse, is offering two years of free identity-protection services, and briefly removed an online advisory during ongoing remediation.
  • Security reporting links the incident to a broader Salesforce data-theft campaign using vishing and malicious OAuth apps, with activity attributed to clusters UNC6040/UNC6240 and the ShinyHunters extortion group.