Last Update: 06/03/2026 at 6:25 AM EST
Ransomware Breaches Expose Sensitive Data
Coverage from Claim Depot, Morningstar, and others
Articles
32
Latest Article
05/29
Active Days
44
Executive Summary
Recent reporting shows a steady stream of ransomware-linked breaches at insurers, lenders, contractors, and other firms, with exposed Social Security numbers, health data, financial details, and driver license records. Most cases pair delayed disclosure with regulator notices, consumer mailings, and credit monitoring, while some are already drawing class-action scrutiny.
Key Points
- Ransomware-linked breaches dominate the cluster, not isolated leaks or simple website exposures.
- The most common exposed data types are Social Security numbers, driver license numbers, financial account details, dates of birth, and health or medical records.
- Many incidents involve delayed discovery or delayed notification, with breaches often uncovered months after the initial access window.
- Regulatory reporting to state attorneys general is a repeated step, alongside mailed consumer notices and toll-free support lines.
- Identity protection offers are now a standard response, usually 12 or 24 months of credit monitoring and fraud assistance.
- Several cases are moving beyond notification into legal exposure, including class-action investigation and allegations of inadequate safeguards or slow notice.
- The signal is coherent and dense: repeated actors, repeated breach mechanics, and repeated remediation patterns make this a stable ongoing privacy-risk theme.
Featured Article
Federman & Sherwood investigates an American Lending Center ransomware breach reported to the Maine Attorney General after July 2025 unauthorized access exposed sensitive consumer information.
Coverage Timeline: 44 Days
Hover over any logo to see coverage summary, click for full article.
Additional Articles
⭐⭐⭐⭐⭐
Mullinax Ford disclosed an April 15, 2026 breach after a DragonForce ransomware attack exposed consumer Social Security and driver license data in late 2025.
Beacon Mutual Insurance Co. began mailing breach notifications after a January 2026 ransomware attack exposed personal and health-related data for workers' compensation claimants in Rhode Island and beyond.
JRK Property Holdings notified Massachusetts, Nebraska, and New Hampshire after a March 26, 2026 ransomware-linked incident and an April 4 Tor claim exposed Social Security and financial account data.
A class-action lawsuit filed in Rhode Island accuses Beacon Mutual Insurance Company of failing to secure and timely notify after a January ransomware breach exposed personal and health identifiers.
Beacon Mutual Insurance notified Rhode Island residents in 2026 after unauthorized January access exposed Social Security, financial, health, and driver license data.
Federman & Sherwood is investigating Ampex Data Systems after an unauthorized-access incident disclosed to California Attorney General in May 2026.
A Pentester.com cybersecurity researcher demonstrated Tucker Carlson personal identifiers based largely on the National Public Data breach of about 2.8 billion records.
ClassAction.org attorneys are investigating a potential class action over Industrial Acceptance Corporation's ransomware breach, involving potential compromise of Social Security numbers, after Maine and California filings.
⭐⭐⭐
Wolf Haldenstein Adler Freeman & Herz LLP investigates claims for people notified about a June 2025 Cardinal data breach in Coos Bay, Oregon.
Cardinal notified individuals in Coos Bay, Oregon, after a June 2025 data breach that may have exposed Social Security numbers and financial account information.
NetLine Corporation notified the Maine Attorney General's Office after a 2026 breach exposed names, Social Security numbers, and taxpayer ID numbers.
Charles River Insurance Brokerage Inc. reported a ransomware data breach to Massachusetts regulators on Dec. 19, 2025, affecting 232 residents, with Akira Tor claims in April 2026.
Carlson Building Maintenance Inc. reported an Akira-linked ransomware data breach on April 3, 2026, affecting 1,118 Iowa residents with exposed Social Security numbers.
Akira ransomware claimed responsibility in April 2026 for a breach at Alliance Roofing Co. Inc. in Santa Clara, California, triggering California Attorney General reporting and 2026 notifications.
Williams Associates Architects Ltd. notified Massachusetts consumers in May 2026 of a data breach exposing Social Security numbers and driver license information.
Beacon Mutual Insurance Company disclosed a January 2026 ransomware-linked breach affecting Texas, Maine, and Vermont residents, with notifications starting May 18, 2026.
Ampex Data Systems disclosed a 2026 PLAY ransomware breach affecting 3,723 people, with notifications sent in May 2026 after encrypted access on March 21.
Lusamerica Foods disclosed a California ransomware breach on Jan. 31, 2026 after the PLAY group posted a Tor claim on Feb. 13, 2026.
Cardinal Services Inc. disclosed a ransomware data breach affecting about 142,323 people in the U.S., including Maine and Vermont residents, with notifications starting May 20, 2026.
Noll & Tam Architects disclosed a May 2026 ransomware-related breach after TERMITE Tor posting, with Massachusetts reporting on May 19, 2026.
Nottingham Village notified the Maine Attorney General on May 22, 2026 after a Qilin ransomware-linked breach exposed data of 7,919 people in the United States.
Industrial Acceptance Corp. notified U.S. consumers in May 2026 after a 2025 ransomware breach exposed Social Security and driver's license numbers for about 79,216 people.
Edelson Lechtzin LLP investigates American Lending Center ransomware incident from July 2025 after unauthorized access exposed personal identifying information for 123,158 individuals.
Cardinal Services in Coos Bay, Oregon disclosed a June 2025 breach potentially exposing Social Security numbers and financial account data, with dark-web sale concerns and legal investigation.
Plaza Home Mortgage notified customers and employees after a February 27, 2026 ransomware incident reportedly compromised personal information.
Beacon Mutual Insurance Company disclosed a January 2026 data breach affecting names linked to Social Security, financial, and health information across Rhode Island, Massachusetts, and Connecticut.
American Lending Center notified consumers on Apr. 28, 2026 after discovering a ransomware breach on July 27, 2025, with 123,000+ potentially affected.
Alliance Roofing Company reported a 2025 unauthorized-access incident with potential exposure of Social Security and driver license numbers, triggering credit monitoring and legal investigation.
Edelson Lechtzin LLP investigates privacy claims after American Lending Center ransomware incident exposed Social Security numbers and dates of birth in July 2025.
Beacon Mutual Insurance Company disclosed a 2026 ransomware attack affecting 11,890 Rhode Island, Connecticut, and Massachusetts residents, with Social Security and license data exposed.
American Lending Center disclosed a July 2025 ransomware incident affecting about 123,158 people, including 120 Maine residents, with sensitive personal data exposure.