Kelly Benefits Data Breach Affects 32,234 People: SSNs Exposed

Kelly & Associates Insurance Group, Inc. experienced a data breach that may have impacted the personal information of tens of thousands of individuals. According to the company's notification to the Maine Attorney General's office, the breach involved unauthorized access to Kelly Benefits' internal systems. The unauthorized access occurred between December 12, 2024, and December 17, 2024. During this period, certain files were copied and taken from the company's environment.

Upon discovering suspicious activity, Kelly Benefits launched an investigation with the assistance of third-party forensic specialists. After a thorough examination, the investigation confirmed that sensitive personal information belonging to 32,234 people across the United States was potentially exposed. This number includes 9 individuals residing in the state of Maine.

The compromised information includes personally identifiable information (PII) such as Social Security numbers, tax ID numbers, dates of birth, and financial account information. Additionally, protected health information (PHI) including medical information and health insurance details was also exposed.

Kelly Benefits completed its detailed analysis of the affected files on March 3, 2025. Although the company has stated that there is currently no evidence of misuse of the exposed information, the severity of the breach is significant due to the sensitive nature of the data involved.

Kelly Benefits officially notified affected individuals about the breach on April 9, 2025. Notification was provided in the form of written letters sent directly to those potentially impacted.

Kelly Benefits is offering affected individuals complimentary credit monitoring and identity protection services through IDX for one year. Individuals whose Social Security numbers were exposed are eligible for these services. Instructions for enrolling in these services were included in the notification letters sent to affected individuals.

The company has also provided additional resources and guidance to help individuals protect themselves from potential identity theft or fraud. These steps include:

• Monitoring financial accounts and credit reports closely for suspicious activity.
• Placing a fraud alert or credit freeze on credit reports.
• Reporting any suspicious activity or identity theft incidents to law enforcement, the Federal Trade Commission (FTC), and state Attorney General offices.

Affected individuals should carefully review the detailed notice provided by Kelly Benefits, which is available on the company's data breach disclosure page.

For further details, the official disclosure submitted to the Maine Attorney General's office can be viewed on the Maine Attorney General's website.

For more information about Kelly Benefits, visit their official website at kellybenefits.com.