Alliance Roofing Data Breach Exposes SSNs and Driver's Licenses

Alliance Roofing Co. Inc., a commercial roofing and waterproofing contractor headquartered in Santa Clara, California, disclosed a data breach that occurred in October 2025.

On Oct. 6, 2025, Alliance Roofing experienced a network disruption. A thorough review of the impacted data concluded on Feb. 23, 2026, nearly five months after the initial disruption.

On April 1, 2026, the Akira ransomware group publicly claimed responsibility for the attack in a posting on the Tor network. The group stated it had obtained 170 gigabytes of data from Alliance Roofing.

The group claimed the compromised data included employee passports, driver's licenses, phone numbers and addresses, financial records, agreements, project documents, drawings, specifications and non-disclosure agreements.

The types of personal information confirmed to have been potentially exposed included names, Social Security numbers and driver's license numbers.

The breach was reported to the California Attorney General. Alliance Roofing began mailing notification letters to affected consumers on April 24, 2026. The total number of individuals affected by the breach has not been publicly disclosed.

Alliance Roofing's response to the breach

The company is providing 12 months of free credit monitoring services through Cyberscout, a TransUnion company that specializes in fraud assistance and remediation. The services include single bureau credit monitoring, a single bureau credit report and a single bureau credit score.

To enroll, affected individuals should visit Cyberscout's activation page and enter the unique code included in their notification letter. Enrollment must be completed within 90 days of the date on the letter.

In addition to credit monitoring, Alliance Roofing is also providing proactive fraud assistance through Cyberscout for affected individuals. This service is designed to help with any questions they might have or to provide support in the event that someone becomes a victim of fraud.

For questions or additional information, affected individuals can call 1-800-405-6108 from 5 a.m. to 5 p.m. Pacific Time, Monday through Friday, excluding holidays.

Steps to take if your information was exposed

• Place a credit freeze with all three credit bureaus. A credit freeze helps prevent new accounts from being opened with stolen personal information and can be set up by contacting Equifax (1-800-525-6285), Experian (1-888-397-3742) or TransUnion (1-800-916-8800).
• Set up a fraud alert on credit reports. A fraud alert notifies creditors to take extra verification steps before opening any new accounts in a consumer's name.
• Review credit reports carefully for unfamiliar activity. Free credit reports from all three bureaus are available at AnnualCreditReport.com and should be checked for any accounts or inquiries that look unfamiliar.
• Request an IRS Identity Protection PIN. An IP PIN from the IRS can prevent someone else from filing a tax return using a stolen Social Security number.
• Monitor bank and financial account statements. Regularly review statements for unauthorized charges or unfamiliar transactions and report any suspicious activity to the financial institution right away.
• Be cautious of phishing attempts. Scammers may send emails, phone calls or text messages referencing Alliance Roofing or this data breach in an attempt to trick recipients into sharing additional personal information.