Mapfre Insurance is notifying customers that somebody was able to get into its "online quoting platform" for Massachusetts residents last month and retrieve information about Massachusetts residents and their cars.
According to a copy of the letter, now part of the state Office of Consumer Affairs and Business Regulation's compilation of data breaches in August, the as yet unknown hackers were able to suck out Massachusetts drivers-license numbers and, in some cases, information about drivers' cars, including the VINs, for two days last month. The company did not say how many people might have had their information stolen.
In the letter, Mapfre writes:
Between July 1 and July 2, 2023, an unknown party used information about you – which was already in the unknown party’s possession – to obtain access to additional information about you through MAPFRE’s Massachusetts online quoting platform in Massachusetts.
What Information Was Involved
We have determined that the unknown party obtained access to your driver’s license number through MAPFRE’s Massachusetts online quoting platform. The unknown party may also have obtained access to information regarding vehicles you own, including make, model, year, and vehicle identification number.
Mapfre says it disabled its online quote system and alerted the authorities as soon as it discovered the data theft. It's offering letter recipients 12 months of free access to Experian's identity monitoring service.