Bonick Landscaping Data Breach Exposes Personal and Medical Details

Bonick Landscaping Inc, a luxury residential landscape design and construction firm based in Irving, Texas, has disclosed a data breach that exposed sensitive personal information belonging to consumers. The breach has so far affected 2,356 Texas residents and one Massachusetts resident.

The breach resulted from a ransomware attack carried out by a cybercriminal threat group known as PLAY.

On April 10, 2025, the PLAY group posted a claim on the Tor network, stating that it had obtained access to Bonick Landscaping's database. The group threatened to publish the stolen data on April 15, 2025.

According to the dark web posting, the compromised data included private and personal confidential data, client documents, budget, payroll, accounting, taxes, IDs and finance information.

The public filings confirmed that the breach compromised the following information types: first and last names, Social Security numbers, financial account information, driver's license numbers, government-issued identification numbers (such as passports and credit or debit card numbers) and state identification card numbers. The breach also exposed medical information and health insurance information.

Bonick Landscaping's response to the breach

Bonick Landscaping is offering affected individuals 24 months of complimentary credit monitoring and identity protection services through Experian IdentityWorks.

Affected individuals can enroll online at the Experian IdentityWorks enrollment page using the activation code included in their notification letter. The enrollment deadline is July 31, 2026, at 11:59 p.m. UTC.

Those who have questions about the breach or prefer to enroll by phone can contact the company's dedicated assistance line at 1-833-918-7475. The line is available Monday through Friday from 8:00 a.m. to 8:00 p.m. Central Time, excluding major U.S. holidays.

Steps to take if your information was exposed

• Place a credit freeze with all three credit bureaus by contacting TransUnion (1-800-680-7289), Experian (1-888-397-3742) and Equifax (1-888-298-0045) to prevent new accounts from being opened without authorization.
• Request free credit reports at AnnualCreditReport.com and review them carefully for any accounts or credit inquiries that are not recognized.
• Monitor financial account and bank statements closely for unauthorized transactions, since financial account information and credit or debit card numbers were among the data types exposed in this breach.
• Review Explanation of Benefits statements from health insurers for medical services not received, as medical information and health insurance information were also compromised.
• Report suspected identity theft to the FTC at IdentityTheft.gov or by calling 1-877-438-4338 if any signs of fraud or misuse of personal information are discovered.
• Be cautious of phishing attempts that reference Bonick Landscaping or this data breach by name, as scammers may try to use breach notifications to trick people into sharing additional personal details.