Another massive data breach exposed millions of driver’s license numbers

Get the Tech newsletter
Daily tech — startups, AI labs, chips, the launches that shape the next decade. Free.
- AssuranceAmerica confirmed a data breach affecting 6.99 million people — the largest known spill of Americans' driver's license information this year, according to breach listings filed with the Indiana and Maine attorney generals' offices.
- Hackers were discovered in AssuranceAmerica's systems on March 17; the company concluded its investigation on June 15, determining the attackers stole names, contact information, driver's license numbers, auto insurance policy and account details, driver and vehicle information, and customer claims data.
- The breach originated when hackers "targeted one of the Company's employees" and stole credentials, which the company subsequently disabled, though the specific credential-theft method — potentially password-stealing malware or compromised software, per prior incidents — was not disclosed.
- Notification letters to affected customers are set to begin going out on July 10; CEO Joe Skruck and founder Guy Millner did not respond to TechCrunch's questions about whether the company had contact with the hackers or paid a ransom.
- The incident is part of a wider pattern of ID document breaches, following a June Texas state government hack that exposed at least 3 million driver's licenses and passport numbers, plus spills from a hotel check-in system, a money transfer app, a prison payphone provider, and a U.K. visa service.
Why it matters: Nearly 7 million Americans just had their driver's license numbers, names, and insurance details exposed in a single breach — information the source notes can be weaponized for fraud and impersonation. The employee-credential entry point mirrors a pattern across other recent ID breaches, and the trend is accelerating as websites and apps demand identity documents for age verification.




