Farmers Insurance, a California-based insurer, has experienced a data breach, resulting in unauthorised access to the “sensitive” data of more than one million customers.  

Precisely, the breach is said to have affected 1,071,172 policyholders. 

A third-party vendor alerted Farmers to suspicious activity in one of its databases containing customer data on 30 May 2025. 

The company said it immediately launched a probe to ascertain the “nature and scope of the incident and notified appropriate law enforcement authorities”. 

According to the company’s investigation, the unauthorised actor accessed the database on 29 May 2025.  

The compromised data includes personal details such as name, address and date of birth, as well as driver’s licence numbers and/or the last four digits of social security numbers. 

The company started sending written notices to impacted individuals on or around 22 August 2025. 

It said there was “no evidence” of additional personal data being accessed but asked affected customers to be vigilant. 

“Although Farmers is unaware of any personal information involved in the incident being misused, we encourage individuals to remain vigilant against instances of identity theft and fraud by reviewing financial account statements and credit reports for any anomalies, and to notify their financial institution of any unauthorised transactions or suspected identity theft,” it stated. 

Farmers is also providing free credit monitoring services including Cyberscout Single Bureau Credit Monitoring, Single Bureau Credit Report, and Single Bureau Credit Score for 24 months.  

Meanwhile, Schubert Jonckheer & Kolbe, a law firm that represents shareholders, employees and consumers in class action lawsuits and derivative actions against corporations, is investigating the breach. 

“Although the breach occurred in May 2025, Farmers Insurance did not begin notifying affected individuals until on or around 22 August 2025, which may have violated state and federal laws,” it said.