The following incident sounds almost identical to the incident reported by American folk Insurance, but this story is from Noblr Reciprocal change (Noblr). As with the one from American Family Insurance, if you receive a letter next week from Noblr, record it. A letter signed by Jennifer Lawrence, their Chief Legal Officer, explains, but begins by noting: please mention that you may be affected even if you hold no relationship with Noblr if your information was used by the attackers in connector with this incident. Noblr is an indemnity reciprocal exchange that maintains a public-facing instant quote feature, which allows anyone to obtain a tailored indemnity quote after entering basic personal information. This characteristic workings by taking the information entered into our webform and using it to get additional information from an outside service provider, including drivers permit numbers, about the person whose information was entered. The system automatically gathers the additional information to improve the accuracy of the quote. This incident affected that additional information. even if you come not experience a relationship with Noblr, your information could hold been affected if the attackers entered your information, or the info on someone in your household, into the quote platform. What Happened On January 21, 2021, Noblrs web team noticed unusual quote activity consisting of a spike in unfinished quotes through its instant quote webpage. Noblr immediately launched an internal investigation. The initial investigation revealed that attackers may have initiated these quotes in tell to rip drivers licence numbers which were inadvertently included in the page source code. as described above, the instant quote process works by taking personal data (name and appointment of birth) entered into the system and matching it with related information automatically pulled from a third-party to help ply a quote. The attackers appear to have already been in possession of the names and dates of birth of consumers, and then used that information to prevail additional personal information through Noblrs instant quote platform. Attackers could also get gone through the entire quote process to access personal info in the final policy application documents provided after obtaining a quote. On January 25, 2021, following the initial discovery of unusual quote activity, Noblrs security team began blocking suspicious IP addresses. On January 27, 2021, when Noblr determined that the attackers were able to access drivers permission numbers, Noblr altered its instant quote system to prevent further access by the attackers and took other steps to combat these attacks. Noblr will be notifying 97,633 consumers, kickoff May 14. The template of their notification letter appears below. Unlike American Family Insurance, their notification does not urinate any mention of unemployment fraud, but the similarities between these two breach reports are so evident, that it seems likely there is a link.