- The workforce says it detected an incident at the end of 2024
- Nearly 145,000 people have been stolen from sensitive files
- Users must be wary of scams and identity theft activity
The staff endowment giant confirmed that he had undergone a cyber attack at the end of 2024 in which he lost sensitive data on nearly 145,000 people.
The company filed with the Maine prosecutor’s office, detailing the violation, which it did to mitigate the threat and how it helped its victims to minimize the threat of follow -up attacks.
In the form, he declared that he had spotted the attack during the investigation into a computer incident on January 20, noting: “Thanks to this survey, we learned that information suggesting that an unknown player has acquired unauthorized access to our network between December 29, 2024 and January 12, 2025 and has potentially acquired certain files, some of which could contain certain personal information.”
Climbing of privileges
“On July 28, 2025 towards this date, Lansing’s workforce learned that your personal information may have been involved in the incident, which is the reason for this notification.”
A total of 144,189 people were affected by the attack. The workforce did not say who was behind the incident, or what type of information was stolen.
However, Bleeping Compompute discovered that Ransomhub, a known ransomware group and extorter, claimed responsibility.
On their data leak website, Ransomhub said that he had stolen some 500 GB of data, including customer databases with personal and business information (passport analyzes, IDS, SSN, addresses, contact details and more), many business communications, financial statements, confidential contracts, non -disclosure agreements, and more.
However, leaks also deleted the workforce from their website, suggesting that the company has paid for ransom. Meanwhile, the customers concerned have been offered free credit supervision and protection against identity theft via Equifax.
