Erie Insurance cyberattack (June 7) causes portal outages & claims disruption. Investigation ongoing. Urgent scam alert: ERIE won't call for payments. Details.

Continue reading
ERIE, PA – June 12, 2025 – Erie Insurance Group and its management company, Erie Indemnity Company (Nasdaq: ERIE), have formally confirmed that a cyberattack detected over the weekend is the root cause of significant, ongoing business disruptions and platform outages affecting millions of policyholders. The incident, impacting critical customer-facing systems since Saturday, June 7th, continues to hinder access to online accounts and claims processing.
The troubles for Erie Insurance, a major property and casualty insurer boasting over 6 million active policies across auto, home, life, and business lines, began abruptly on Saturday, June 7, 2025. Customers attempting to access their online accounts or conduct business via the company's website encountered widespread errors and outages.
Initially, the cause was unclear, leaving policyholders and independent agents who sell Erie products frustrated. The company maintained limited public communication until today's crucial disclosure.
In its SEC filing and a corresponding notice on the Erie Insurance website, Erie Indemnity confirmed the origin: "On Saturday, June 7, Erie Insurance's Information Security team identified unusual network activity." The company emphasized its swift reaction: "We took immediate action to respond to the situation to safeguard our systems and data... Since Saturday, we have continued to take protective action for the security of our systems."
This immediate action is standard protocol during cyberattacks – often involving isolating affected systems or taking networks offline – to contain the threat and prevent further spread. However, this necessary defense mechanism inherently causes significant business disruption, impacting applications and websites essential for daily operations, customer service, and agent functions.
The repercussions for Erie Insurance customers are tangible and widespread:
Erie Insurance acknowledges the severity and ongoing nature of the incident. "The full scope, nature, and impact of the incident are still being determined," the company stated. Its response focuses on three key areas:
Crucially, Erie Insurance issued a stark warning against potential scams exploiting the chaos: A prominent alert on their website states, "During this outage, Erie Insurance will not call or email customers to request payments." The company strongly advises customers: "As is best practice, do not click on any links from unknown sources or provide your personal information by phone or email."
The Form 8-K filing and website notice stop short of confirming critical details that policyholders and regulators are keenly awaiting:
The Erie Insurance cyberattack underscores the persistent threat facing the insurance sector, a high-value target due to the vast amounts of sensitive personal and financial data it holds. As the forensic investigation progresses, Erie Insurance faces the dual challenge of securely restoring critical services for its 6 million policyholders while meticulously determining the extent of any potential data compromise. Customers are advised to utilize the provided phone numbers for urgent needs, remain vigilant for phishing attempts, and monitor official Erie Insurance channels for further updates. The resolution timeline remains uncertain, reflecting the complex nature of modern cyber incident recovery.

U.S. Army recruiting pages hijacked to display fake 404 errors reading ‘Kurdistan’, exploiting a third-party tool and exposing .mil web security gaps.