Workers’ compensation specialist Beacon Mutual Insurance Co. reports it has begun mailing letters to individuals whose personal information was involved in a recent ransomware attack.
Upon learning of the activity on January 14, 2026, the Rhode Island-based insurer said it took action to contain it and began an investigation that determined that an unauthorized person gained access to some of Beacon Mutual’s systems between January 7 and January 14, 2026, and acquired copies of certain data files.
The insurer said it found that one or more of the breached files contained the first name or first initial and last name along with one or more of a Social Security number, driver’s license number, financial account number, health insurance information and/or medical treatment information.
Beacon Mutual did not indicate how many people might have been affected.
The company said it is notifying those whose personal information may have been involved and encourages people who believe their information may have been involved to contact the company at 833-918-8448.
Workers’ Compensation Insurer Beacon Mutual Dealing With Ransomware Attack
“Beacon Mutual has taken, and will continue to take, steps to enhance the security of our computer network to prevent something like this from happening in the future,” the company stated.
The ransomware tracking site, Ransomware.Live, previously posted information indicating that the threat group INC Ransom claimed responsibility for the attack.
The INC Ransom leaked screenshot on the site claimed that the breach affected 275 GB of uncompressed/internal files and confidential information including personally identifiable information (PII) of employees, claimants, and insured workers; internal financial statements, correspondence and operational content; detailed workers’ compensation claims data and medical records, and more.
At the time, a Beacon Mutual spokesperson confirmed it was a ransomware attack but could not confirm the identity of the attacker.
Beacon Mutual, headquartered in Warwick, is the main provider of workers’ compensation insurance in Rhode Island. It also writes in Massachusetts and Connecticut. In 2024, it generated more than $118 million in revenue and employs about 100 people.
Beacon Mutual is not alone among insurers in experiencing a data breach. Last August, Farmers Insurance warned of a data breach that could impact more than one million customers. Last June, Erie Insurance experienced a month-long network outage caused by a cyberattack but reported it was not a ransomware attacks and no data was breached. Around the same time, Philadelphia Insurance reported it was hit with a cyberattack that did not involve ransom and some data was stolen.
Topics
Cyber
Interested in Cyber?
Get automatic alerts for this topic.
