Farmers Insurance Data Breach: Over 1 Million Customers Impacted Across Farmers Insurance Exchange and Its Subsidiaries

Posted on
By Annie Causey
Partner
farmers insurance data breach

Woods Lonergan PLLC is a nationally recognized complex commercial and civil litigation firm that represents clients in select data breach class actions nationwide. Our attorneys have a proven record of holding national corporations, educational institutions, and technology vendors accountable when failures in cybersecurity expose the sensitive personal, financial, and educational information of consumers and businesses.

Farmers Insurance, headquartered in Woodland Hills, California, disclosed in August 2025 that more than 1.1 million customers had their personal information compromised through a third-party vendor. 

“Farmers Insurance late last week disclosed a data breach impacting the personal information of more than one million individuals.” SecurityWeek

What You Should Do If You Receive a Farmers Insurance Data Breach Letter

If you received a data breach notification letter from Farmers or a suspicious-looking email impersonating the company, your personal data may already be at risk.

Call Our Data Breach Lawyers 24/7 at (332) 378-0376 or email loganlowe@woodslaw.com for a free and confidential consultation. Woods Lonergan takes no fees unless we win.

Our Data Breach Litigation Team is committed to ensuring victims of the Farmers Insurance Data Breach receive the justice they deserve.

Who Was Impacted by the Farmers Insurance Data Breach?

While Farmers is a major insurance provider serving over 10 million households, it is not directly traded on a stock exchange. Instead, its management is handled by Farmers Group, Inc., a private subsidiary of Zurich Insurance Group, which is publicly traded.

The August 2025 breach affects customers across multiple Farmers subsidiaries:

  • Farmers Insurance Exchange — 1,071,172 individuals
  • Farmers New World Life Insurance — 40,000 individuals
  • Subsidiaries and affiliates including Foremost® and Bristol West®

Compromised Data in the Farmers Insurance Data Breach Includes:

  • Names,
  • Addresses,
  • Dates of birth,
  • Driver’s license numbers,
  • Last four digits of Social Security numbers.

In its official statement, Farmers said:

“Out of an abundance of caution, we are broadly providing notice of a security incident that may have involved personal information of certain individuals.” Farmers Insurance Notice of Incident (PDF)

How Did the Farmers Insurance Data Breach Happen?

  • Intrusion Date: May 29, 2025
  • Detection Date: May 30, 2025, by the third-party vendor
  • Notice Date: Around August 22, 2025, letters began reaching affected individuals
  • Nature of Breach: Unauthorized access to a vendor database containing customer information
  • Farmers Response: Engaged law enforcement and cybersecurity experts, began sending out notices, and offered 24 months of complimentary identity monitoring through CyberScout

What You Should Do If You Receive a Farmers Insurance Data Breach Letter

If you received a data breach notification letter from Farmers or a suspicious-looking email impersonating the company, your personal data may already be at risk.

Call Our Data Breach Lawyers 24/7 at (332) 378-0376 or email loganlowe@woodslaw.com for a free and confidential consultation. Woods Lonergan takes no fees unless we win.

Our Data Breach Litigation Team is committed to ensuring victims of the Farmers Insurance Data Breach receive the justice they deserve.

While Farmers has not confirmed whether this was a ransomware attack, the vendor has not been publicly named on ransomware leak sites.

This is not the first time Farmers has faced vendor-related issues. In November 2023, a ransomware attack on Infosys McCamish Systems, a third-party vendor for Farmers New World Life, exposed sensitive data of 25,867 policyholders and annuity holders. That breach involved Social Security numbers, driver’s license numbers, and medical information—and lawsuits were filed against Farmers New World Life as a result.

Together, the 2023 and 2025 incidents illustrate a potential pattern of repeated security failures at the vendor level, raising questions about oversight and data protection.

Why Is the Farmers Insurance Data Breach So Serious?

The stolen information can be weaponized in multiple ways:

  • Phishing and impersonation attacks targeting customers via email, text, or phone
  • Identity theft using DOB, driver’s license numbers, and partial Social Security numbers
  • Fraudulent credit applications or account takeovers

As BleepingComputer reported:

Hackers have, “recently pivoted from targeting retailers to focusing on U.S.-based insurance firms, with no signs of slowing down.” BleepingComputer

What Legal Rights Do Victims of the Farmers Insurance Data Breach Have?

Legal theories Woods Lonergan is investigating include:

  • Negligence / Negligence Per Se — failure to safeguard sensitive customer data
  • Breach of Implied Contract — policyholders entrusted information with the expectation it would be protected
  • Consumer Protection Violations — delayed notification (nearly three months after detection)
  • Failure to Notify Timely — possible violations of state data breach statutes
  • Unjust Enrichment — Farmers benefitted from data collection without implementing sufficient safeguards

About Woods Lonergan PLLC

Woods Lonergan PLLC is a nationally recognized plaintiff firm specializing in complex civil litigation, including class action, data privacy, and cybersecurity matters. We have a proven track record of successfully holding corporations accountable for data breaches and protecting the rights of consumers. Our firm is currently representing plaintiffs in open litigation for numerous significant data breaches in 2025, including cases involving Powerschool, Ahold Delhaize, Aflac Insurance, Allianz Insurance, Johnson Controls, Community Health Center, Columbia University, DISA Global Solutions, and New Haven Health. Notably, in 2025, Woods Lonergan settled the 23andMe Data Breach Lawsuit for $30 million in the Northern District of California and reached a multi-million dollar settlement in the Sunflower Medical Group data breach case in the U.S. District Court for the District of Kansas.

Our Data Breach Litigation Team is committed to ensuring victims of the Farmers Insurance Data Breach receive the justice they deserve.

What You Should Do If You Receive a Farmers Insurance Data Breach Letter

If you received a data breach notification letter from Farmers or a suspicious-looking email impersonating the company, your personal data may already be at risk.

Call Our Data Breach Lawyers 24/7 at (332) 378-0376 or email loganlowe@woodslaw.com for a free and confidential consultation. Woods Lonergan takes no fees unless we win.

FAQs About the Farmers Insurance Data Breach

Q: Who was affected by Farmers Insurance Data Breach?

A: More than 1.1 million customers of Farmers Insurance Exchange, Foremost®, Bristol West®, and Farmers New World Life Insurance.

Q: What personal information was stolen?

A: The compromised data includes names, addresses, dates of birth, driver’s license numbers, and last four digits of Social Security numbers.

Q: When did the Farmers Insurance Data Breach happen, and when were customers notified?

A: Hackers accessed the vendor’s database on May 29, 2025. Farmers were alerted the next day, May 30, but affected individuals did not begin receiving data breach notification letters until late August 2025.

Q: What types of insurance does Farmers Insurance offer?

A: Farmers Insurance provides a wide range of insurance products, including auto, homeowners, renters, condo, mobile home, and landlord insurance, and life insurance, business/commercial policies, umbrella coverage, pet insurance, and specialty products such as motorcycle, boat, and recreational vehicle insurance. Farmers serve over 10 million households with over 19 million policies across all 50 states.

Q: How will I know if my data was breached in the Farmers Insurance incident?

A: Farmers have begun mailing data breach notification letters to affected individuals. If you are a current or former customer of Farmers Insurance Exchange, Foremost®, Bristol West®, or Farmers New World Life, you may receive such a letter. You should also carefully monitor your email, text messages, and mail for suspicious communications that may serve as phishing attempts.

Q: How does the 2025 breach compare to the 2023 Farmers vendor breach?

A: The 2025 breach is larger in scale, affecting over a million customers. The 2023 breach at Infosys McCamish Systems impacted about 25,000 Farmers New World Life customers and exposed Social Security numbers and medical data. Lawsuits were filed in that earlier case, which may signal similar legal action here.

Q: Can I be a named plaintiff in a Farmers Insurance Data Breach lawsuit?

A: Yes. If your data was exposed and you experienced phishing, fraud, or identity theft, you may qualify as a named plaintiff.

Q: What damages could victims recover?

A: Compensation may include reimbursement for fraud losses, costs of credit monitoring, statutory damages under state data protection laws, and recovery for time spent repairing credit and accounts.

Contact Our Data Breach Litigation Team

If you received a data breach notification letter or suspicious email tied to Farmers Insurance, you may already be at risk.

Call Our Data Breach Lawyers 24/7 at (332) 378-0376 or email loganlowe@woodslaw.com for a free and confidential consultation. We take no fees unless we win.

Sources

About the Author
Annie E. Causey, a Partner at Woods Lonergan PLLC, specializes in high-stakes complex civil litigation across various business industries and sectors. With extensive courtroom experience in New York state and federal courts, she represents clients in cases involving breach of contract, fiduciary duty, fraud, and business torts. Annie also provides general counsel to businesses and individuals, advising on the formation, negotiation, and protection of commercial interests in joint ventures, LLCs, partnerships, and closely held corporations. She has deep expertise across various industries, including retail, real estate, technology, and finance, and excels in handling board governance and complex litigation scenarios involving domestic and international businesses, ranging from small businesses to mid-size companies and publicly held corporations. Recognized by Super Lawyers from 2016 to 2024, Annie holds a J.D. from New York Law School and a B.A., magna cum laude, from the University of North Carolina at Charlotte. She is admitted to practice in New York and various federal courts, including the U.S. District Courts for the Southern and Eastern Districts of New York and the U.S. Court of Appeals for the Second Circuit.
Disclaimer: The information in this article and blog post (“post”) is provided for informational purposes only, and may not reflect the current law(s) in every jurisdiction. No information contained in this post should be construed as legal advice from Woods Lonergan PLLC or the individual author(s), nor is it intended to be a substitute for legal counsel on any subject matter. Nothing herein shall be construed to create an attorney-client relationship with Woods Lonergan PLLC. No reader of this post should act or refrain from acting on the basis of any information included in, or accessible through, this Post without seeking the appropriate legal or other professional advice on the particular facts and circumstances at issue from an attorney licensed in the recipient’s jurisdiction. This post is attorney advertising.
Attorney Advertising | Disclaimer | Privacy Policy
Website developed in accordance with Web Content Accessibility Guidelines 2.1.
If you encounter any issues while using this site, please contact us: 212.684.2500