Close Menu
  • Thu, May 01, 2025

    a.Maximus, Inc. (Maximus) Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (May 1, 2025) – On April 29, 2025, Maximus reported the incident to the Texas Attorney General’s Office. According to the filing, 4,514 individuals in Texas were impacted. Maximus notified affected consumers through printed publications, U.S. Mail, and statewide media broadcasts in Texas. Federman & Sherwood is conducting a comprehensive investigation into the data breach to determine its full extent, including whether additional information was affected and the overall impact of the incident. The firm strongly encourages...

    Learn More
  • Thu, May 01, 2025

    Used Bikes Direct Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (May 1, 2025) – On April 29, 2025, Used Bikes Direct notified the Texas Attorney General of a data breach involving potential unauthorized access to sensitive personally identifiable information within its systems. As of May 1, 2025, the company has not publicly disclosed specific details about the incident. Federman & Sherwood is currently conducting a thorough investigation to assess the full scope of the data breach, including the possibility of further compromised information and the broader implications...

    Learn More
  • Tue, April 29, 2025

    Engelson & Associates, Ltd. (E&A) Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 29, 2025) – On or around February 28, 2025, Engelson & Associates, Ltd. (E&A) detected unusual activity involving an employee's email account. Upon discovery, immediate measures were taken to secure the email environment, and independent cybersecurity experts were engaged to investigate the incident and assess whether any sensitive information had been compromised. The investigation determined that an unauthorized actor accessed an E&A employee’s email account for a limited period. Given the nature of the emails contained...

    Learn More
  • Mon, April 28, 2025

    Silgan Holdings Inc. Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 28, 2025) – On February 15, 2024, Silgan detected suspicious activity involving certain computer systems. In response, Silgan took immediate action to secure its network and initiated an investigation to assess the nature and extent of the incident. The investigation confirmed that an unauthorized party accessed specific files and folders within Silgan’s systems and copied certain information between February 2, 2024, and February 16, 2024. Silgan then conducted a comprehensive review to determine whether the affected...

    Learn More
  • Mon, April 28, 2025

    Northern California Children’s Therapy Center (NCCTC) Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 28, 2025) – On March 16, 2025, an unauthorized third party exploited a vulnerability in Northern California Children’s Therapy Center’s (NCCTC) system and gained access to certain individuals personal information stored on their system. Upon discovering the breach, NCCTC took immediate action to secure the system and prevent any further access. By March 19, 2025, the technical issue was resolved, and the platform was fully secured. Since the incident, NCCTC has conducted a comprehensive internal review...

    Learn More
  • Fri, April 25, 2025

    Onsite Mammography Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 25, 2025) – On October 4, 2024, Onsite Mammography detected suspicious activity involving an employee’s email account. In response, the company initiated an investigation with help from third-party cybersecurity experts to assess the nature and scope of the incident. The investigation determined that an unauthorized party had accessed the email account for a limited time. A thorough review, completed on February 21, 2025, revealed that the account contained personal and/or sensitive information of approximately 357,265 individuals....

    Learn More
  • Fri, April 25, 2025

    Allstate Insurance - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 25, 2025) – A recent lawsuit filed accuses insurance giant Allstate of collecting and selling the smartphone location data of 45 million Americans. Legal action has been taken against Allstate and its subsidiary, Arity, for allegedly unlawfully gathering, using, and selling data tracking the movements and locations via hidden software embedded in mobile apps like Life360.   Allstate allegedly amassed trillions of miles' worth of location data, which was then used to create what it called...

    Learn More
  • Fri, April 25, 2025

    Allied Telesis Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 25, 2025) – On May 20, 2024, Allied Telesis experienced a cybersecurity incident.  According to the breach notice, the company detected suspicious activity, which raised concerns about potential unauthorized access to its network. In response, Allied Telesis initiated an investigation to understand the nature of the incident. The investigation revealed that unauthorized third parties may have accessed and acquired sensitive personal information from their systems between April 30, 2024, and May 20, 2024. As a result,...

    Learn More
  • Fri, April 25, 2025

    Bay Village of Sarasota Inc Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 25, 2025) – The data breach at Bay Village of Sarasota Inc. was the result of a hacking incident that compromised an external system on February 7, 2025. However, the breach was not discovered until nearly two months later, on April 2, 2025. The incident impacted numerous individuals, including residents of Maine. On April 21, 2025, Bay Village of Sarasota Inc. issued written notifications to affected individuals, outlining the nature of the breach and the measures...

    Learn More
  • Fri, April 25, 2025

    Hackard Law Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 25, 2025) – Hackard Law recently reported a data breach to the Attorney General of Maine, confirming that sensitive and/or personal information in its care may have been compromised. The incident was initially discovered on November 12, 2024, when the firm identified unauthorized access to two employee email accounts. Following the discovery, Hackard Law immediately launched an investigation to understand the nature and scope of the breach. Through this investigation, the firm determined that the unauthorized...

    Learn More
  • Fri, April 25, 2025

    Cambridge University Press & Assessment Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 25, 2025) – Cambridge University Press & Assessment recently notified the Maine Attorney General of a data breach involving potentially compromised personally identifiable information under its care. The incident traces back to June 5, 2025, when the organization detected suspicious activity within a network segment belonging to one of its Australian subsidiaries. In response, Cambridge University Press & Assessment promptly launched an investigation to determine the nature and scope of the breach. The investigation confirmed that...

    Learn More
  • Fri, April 25, 2025

    Minyard Morris LLP Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 25, 2025) – On June 25, 2024, Minyard Morris LLP detected unusual activity within its computer network and immediately launched an investigation in collaboration with internal IT staff and external cybersecurity experts. The investigation revealed that certain files may have been accessed without authorization between June 16 and June 25, 2024. In response, Minyard Morris initiated a thorough review of the impacted files to determine the types of information involved and identify the individuals affected. To...

    Learn More
  • Fri, April 25, 2025

    Vanni & Humphrey Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 25, 2025) – On April 15, 2025, Vanni & Humphrey began mailing data breach notification letters to individuals affected by a cybersecurity incident. According to the notice filed with the California Attorney General, the firm is offering complimentary credit monitoring services and has outlined the specific types of sensitive information involved. Vanni & Humphrey notified the California Attorney General of a data breach involving potentially sensitive and personal information, affecting certain individuals. According to the notice,...

    Learn More
  • Fri, April 18, 2025

    Athena Cosmetics, Inc. d/b/a RevitaLash Cosmetics Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 18, 2025) – On January 16, 2025, Athena identified potentially suspicious activity within its network and promptly launched an investigation, enlisting the support of independent cybersecurity experts. Through this investigation, Athena determined that certain files may have been accessed or acquired without authorization. The company subsequently conducted a thorough review of the affected data and, around April 3, 2025, discovered that the personal information of certain current and former employees and vendors may have been included...

    Learn More
  • Fri, April 18, 2025

    KWS Manufacturing Company, LLC Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 18, 2025) – KWS recently became aware of suspicious activity within its computer environment and promptly initiated an investigation with the support of external cybersecurity experts. The investigation revealed that an unauthorized third party accessed KWS’s computer systems between January 24 and January 25, 2025, and obtained certain company files. Following this discovery, KWS conducted a thorough review of the affected files to identify any personal information that may have been included.  KWS is notifying the...

    Learn More
  • Thu, April 17, 2025

    Blue Cross Blue Shield of Texas (BCBSTX) Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 17, 2025) – Blue Cross Blue Shield of Texas (BCBSTX) has confirmed a data breach that compromised the personal information of 12,086 Texas residents. The breach was officially reported to The Texas Attorney General and subsequently added to the state’s data breach notification database on Tuesday, April 15, 2025. According to a statement provided to the Dallas Morning News, the breach occurred through the company’s Blue Access for Members (BAM) online portal, a platform used by...

    Learn More
  • Thu, April 17, 2025

    Payroll Management, Inc. Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 17, 2025) – On April 8, 2025, Payroll Management experienced a cybersecurity incident. The incident occurred when a client service representative received an email from the account of a known client contact, requesting specific documentation and changes to the client's payroll account. It was later determined that the client contact's email had been compromised. Although no changes were made to the payroll account, the unauthorized party was able to obtain a copy of an employee pay...

    Learn More
  • Thu, April 17, 2025

    Medical Express Ambulance Inc. (MedEx Ambulance or MedEx) Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 17, 2025) – On March 18, 2024, MedEx experienced a network disruption that affected the functionality and accessibility of certain systems. Upon identifying the issue, MedEx immediately disconnected network access and engaged a specialized third-party cybersecurity firm, along with internal IT personnel, to help secure the environment and conduct a thorough forensic investigation into the incident's nature and scope. The investigation concluded that personal information may have been accessed or acquired by a threat actor. In...

    Learn More
  • Thu, April 17, 2025

     Thede Culpepper Moore Munro & Silliman LLP (Thede Culpepper) Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 17, 2025) – On April 21, 2024, Thede Culpepper discovered unusual activity on its computer network. Upon identifying the issue, immediate steps were taken to initiate an internal investigation and contain the incident. A cybersecurity firm was engaged to conduct a further investigation and confirm the security of Thede Culpepper’s computer systems. At that time, there was no evidence of unauthorized access or acquisition of any documents. However, it was later discovered that, during the incident,...

    Learn More
  • Thu, April 17, 2025

    Harrison Poultry, Inc. (HPI) Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 17, 2025) – On December 17, 2024, HPI identified unusual and suspicious activity within its network. Upon detection, the company took immediate action by initiating a thorough investigation into the source and nature of the activity. HPI engaged cybersecurity experts to assist with the analysis and response. As part of this effort, the company also implemented additional security measures to protect its network and sensitive data from further compromise. Through the investigation, it was determined that...

    Learn More
  • Thu, April 17, 2025

    US Claims Capital, LLC Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 17, 2025) – On or around January 7, 2025, US Claims detected suspicious activity within its network environment. Upon discovering the activity, US Claims initiated an investigation into the cybersecurity incident, retaining legal counsel and third-party forensic experts to assist in the inquiry. The company then conducted a thorough review of the data to identify any sensitive or personal information that may have been affected and to determine whose information was involved. On March 25, 2025,...

    Learn More
  • Thu, April 17, 2025

    Hartwick College Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 17, 2025) – On March 13, 2025, the Hartwick College (the college) confirmed that personal information was involved in an unauthorized access incident affecting its computer environment. The incident was first identified on October 26, 2024, when the college detected suspicious activity following a temporary disruption of its network. In response, immediate steps were taken to secure the system, and an investigation was launched to determine the nature and extent of the incident, including whether any...

    Learn More
  • Thu, April 17, 2025

    Bluestone Bank Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 17, 2025) – On February 28, 2025, Bluestone Bank experienced an administrative error that led to the unauthorized disclosure of certain personal information to another customer. Bluestone stated in the notice letter, the information was sent via encrypted email, ensuring it could not be intercepted by anyone other than the intended recipient. The email was also promptly removed from the secure email portal, preventing any further access. Additionally, the individual who received the information signed a...

    Learn More
  • Mon, April 14, 2025

    True Dental Care for Kids and Adults, LLC Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 14, 2025) – On February 3, 2025, True Dental Care (True Dental) discovered that an unauthorized individual had gained access to its computer system and deployed a virus that encrypted its data.  During the incident, certain patient information was accessed and viewed by the intruder. Upon discovery, True Dental immediately engaged a leading forensic cybersecurity firm to investigate the incident, enhance system security, and prevent further unauthorized access.  True Dental reported the data breach, that affected...

    Learn More
  • Mon, April 14, 2025

    Worthington Steel, Inc. Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 14, 2025) – Worthington Steel has reported a data breach to the U.S. Department of Health and Human Services, indicating that unauthorized access occurred on one of its network servers. Preliminary details suggest the incident was likely the result of hacking or another type of IT-related intrusion, where unauthorized individuals gained access to sensitive information through the company’s computer systems. The breach, which impacted approximately 3,864 individuals, involved protected health information associated with the company's health...

    Learn More
  • Fri, April 11, 2025

    Central Texas Pediatric Orthopedics (CTPO) Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 11, 2025) – On or around March 3, 2025, Central Texas Pediatric Orthopedics (CTPO) detected suspicious activity involving its IT infrastructure, prompting an immediate response. CTPO quickly engaged third-party cybersecurity specialists to conduct a thorough investigation into the nature and scope of the security incident. The investigation confirmed that an unauthorized third party—identified as the Qilin ransomware group—had infiltrated CTPO’s systems and exfiltrated sensitive personal and protected health information. CTPO is continuing to evaluate the full...

    Learn More
  • Fri, April 11, 2025

    Loretto Hospital Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 11, 2025) – Loretto Hospital (Loretto) became aware of suspicious activity involving its computer network and immediately launched an investigation. The findings revealed that an unauthorized actor accessed Loretto’s network between January 17, 2025, and February 1, 2025, during which time certain files were copied. A review is currently underway to determine the contents of those files and identify the individuals potentially affected. Additionally, it was determined that data entered into the electronic medical record system...

    Learn More
  • Fri, April 11, 2025

    Moorhead Law Group, PLLC (MLG) Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 11, 2025) – On January 8, 2024, MLG identified suspicious activity involving a firm email account and promptly launched an investigation. This included engaging third-party cybersecurity experts to help ensure a thorough and effective response. The investigation determined that an unauthorized individual had accessed the account, and certain information may have been viewed or acquired between December 26, 2023, and January 8, 2024. Following this discovery, MLG began working diligently—alongside external specialists—to identify what data may...

    Learn More
  • Fri, April 11, 2025

    Mercury Aircraft Data Breach - Investigated by Federman & Sherwood

    Oklahoma City, Oklahoma (April 11, 2025) –On or around February 19, 2025, Mercury detected suspicious activity suggesting a potential cybersecurity incident. The company took immediate action to contain the situation and reduce any potential impact. Mercury also notified law enforcement and brought in an independent cybersecurity firm to conduct a comprehensive investigation. The investigation, which was recently completed, confirmed that the incident was limited in scope and duration—occurring only between February 18 and February 19, 2025. However, on or about...

    Learn More
  • Fri, April 11, 2025

    Depo-Provera (DP) and Generic Equivalent (DMPA) Investigated by Federman & Sherwood

    Oklahoma City, OK (April 11, 2025) – Federman & Sherwood, a nationally recognized class-action litigation firm with offices in Oklahoma City and Dallas, has launched an investigation into the potential health risks associated with the use of Depo-Provera (DP) and its generic equivalent, Depot Medroxyprogesterone Acetate (DMPA). These medications are widely prescribed as injectable birth control and are also used to regulate menstrual cycles. In higher doses, they may also be administered to treat certain forms of cancer. Recent medical...

    Learn More