About AMP, LLC
AMP, LLC, a healthcare business and benefit solution consulting firm, recently experienced a data breach. The breach has affected 22 individuals, including 1 resident of Maine. The breach was identified to be an external system breach, specifically hacking, which led to unauthorized access to sensitive personal information. This incident has prompted AMP, LLC to notify the affected individuals and take necessary steps to mitigate any potential damage.
What Happened
On April 7, 2025, AMP became aware of a suspicious activity in one of its email accounts. AMP took swift action to secure the account. It partnered with cyber incident response professionals to investigate the nature and scope of the activity. As part of the investigation, AMP learned that the contents of the account could have been taken by an unauthorized actor. It therefore performed a comprehensive review of the contents of the account for the presence of sensitive information. On June 4, 2025, AMP confirmed that certain emails and attachments within the account contained personal information. The data points impacted included name and Social Security number.
The breach primarily impacted individuals whose names and Social Security numbers were exposed. The breach occurred on April 7, 2025, and was discovered on June 4, 2025.
Next Steps
Affected users are encouraged to remain vigilant by regularly reviewing their account statements and credit reports for any signs of fraud or misuse. It is advised to report any suspicious activities to financial institutions or service providers, and file reports with law enforcement if necessary. Additionally, it is recommended to notify the state attorney general and contact the Federal Trade Commission for further guidance. AMP, LLC is actively reviewing its security policies and implementing additional protections to prevent such incidents in the future.
Identity Theft Protection Services
AMP, LLC is offering twelve months of identity monitoring and identity protection services at no cost to the affected individuals. These services are provided through Cyberscout, a TransUnion company, and are designed to help monitor for unauthorized use of personal information. Impacted individuals are encouraged to take advantage of these services to protect their identity and mitigate potential risks associated with the data breach.