Boston Capital Holdings: Sensitive Personal Information Compromised

Boston Capital Holdings LP, a Boston-based real estate holding company, disclosed a data breach involving unauthorized access to files on its computer network in January 2026, that has so far impacted 132 Maine residents.

On Feb. 12, 2026, Boston Capital began reviewing a claim involving potential unauthorized access to certain files on its computer network.

The unauthorized individual gained control of other legitimate companies' cloud systems and used those to bypass Boston Capital's cybersecurity tools and permissions.

Through this unauthorized access, the attacker copied certain files from the company's computer network over a seven-day period from Jan. 16 through Jan. 22, 2026.

Following the breach, the company began a detailed review of the accessed files to determine their contents and identify affected individuals.

The types of personal information exposed varied by individual but included names, Social Security numbers, driver's license numbers, passport numbers, other government identification numbers and financial account information without codes to access those accounts.

The company posted a notice about the incident on its website on March 17, 2026, and began sending written notifications to affected consumers on May 18, 2026.

Boston Capital Holdings' response to the breach

The company is offering affected individuals 12 months of free credit monitoring through Cyberscout, a TransUnion company. The monitoring package includes single bureau credit monitoring, a credit report, a credit score and proactive fraud assistance.

Affected individuals must enroll within 90 days of receiving their notification letter by visiting the Cyberscout enrollment page and entering the unique code provided in their letter.

Individuals with questions can contact Boston Capital's toll-free assistance line at 1-833-877-7029, available Monday through Friday from 8:00 a.m. to 8:00 p.m. Eastern Time, excluding U.S. holidays. They may also write to Boston Capital Holdings LP, Attn: Legal Department, 11 Beacon St., Ste. 325, Boston, MA 02108.

Steps to take if your information was exposed

• Place a credit freeze on your credit file by contacting Equifax (1-888-298-0045), Experian (1-888-397-3742) and TransUnion (1-833-799-5355) to help prevent new accounts from being opened using stolen personal information.
• Set up a fraud alert with any one of the three major credit bureaus, which will notify the other two and require businesses to verify your identity before issuing new credit.
• Request and review free credit reports at AnnualCreditReport.com and look carefully for any unfamiliar accounts, inquiries or activity.
• Monitor financial account statements closely for unauthorized transactions, since financial account information was among the types of data exposed.
• Be cautious of phishing attempts that reference Boston Capital Holdings or this data breach by name, as scammers often use real incidents to trick people into sharing additional personal details.
• File an identity theft report with the Federal Trade Commission at identitytheft.gov or by calling 1-877-438-4338 if any suspicious activity is detected on your accounts or credit reports.