Bomco Data Breach Exposes Social Security Numbers and Health Information

Bomco Inc, a Massachusetts-based manufacturing company that specializes in precision metal-formed components for the aerospace and aviation industries, disclosed a data breach involving unauthorized access to files on its network. The incident has so far impacted 811 Massachusetts residents, six Vermont residents and four Maine residents.

On June 17, 2025, Bomco became aware that certain files on its network may have been accessed by an unauthorized actor. The company launched an investigation to determine the nature and scope of the incident.

The investigation determined that an unauthorized actor gained access to certain files within Bomco's network over a three-day window, from June 14, 2025, to June 16, 2025. During that time, the unauthorized actor may have copied those files.

Following the investigation, Bomco worked with third-party data review specialists to examine the content of the affected files. The review took approximately 10 months, concluding on April 20, 2026.

The types of personally identifiable information potentially exposed included names, Social Security numbers, driver's licenses, government ID numbers, financial account information and credit/debit account numbers and health records.

The company began notifying consumers on May 18, 2026.

Bomco's response to the breach

Bomco is offering affected individuals complimentary credit monitoring and identity restoration services for 24 months through IDX. To activate these services, individuals must complete the enrollment process by Aug. 18, 2026.

Bomco has set up a dedicated phone line at 1-833-788-9712 for individuals with questions about the incident. The line is available Monday through Friday from 9 a.m. to 9 p.m. Eastern Time, excluding holidays.

Affected individuals may also write to Bomco at 125 Gloucester Ave., Gloucester, MA 01930.