CNHI Data Breach Exposes SSNs & Financial Info

CNHI, LLC, a leading provider of local news and information based in Montgomery, Alabama, experienced a significant data breach earlier this year. According to official disclosures, the data breach incident exposed personally identifiable information (PII) of thousands of individuals, potentially including current and former clients, affiliates, and employees.

Between April 27 and May 17, 2025, an unauthorized actor infiltrated CNHI’s network and exfiltrated sensitive files. Compromised information includes names, Social Security numbers, driver’s license numbers and financial account numbers of affected individuals. On May 21, 2025, the PLAY ransomware group posted on the Tor network, claiming to have obtained private and confidential data. They announced plans to publish the stolen data on May 24, 2025, escalating the severity of the situation.

So far, the breach has impacted at least 57 residents in Maine, 1,203 in South Carolina and 23 in Rhode Island. However, this is an ongoing investigation and the number of affected individuals is subject to change. CNHI discovered the breach on Nov. 19, 2025, after a thorough review of compromised files. The exposure of PII and financial information put individuals at risk of identity theft and fraud.

Beginning on Dec. 8, 2025, the company began notifying impacted individuals by mail and disclosing the breach to the Attorney Generals' offices in Maine, South Carolina, and Vermont.

CNHI's response

Upon discovering the breach, CNHI immediately secured its network and launched an internal investigation. The company worked with cybersecurity professionals to determine the scope of the incident and identify the affected individuals. To support those impacted, CNHI has offered a complimentary one-year membership in Experian IdentityWorks, which includes credit monitoring, identity theft protection and up to $1 million in identity theft insurance.

Given the nature of the breach, individuals whose information may have been compromised are encouraged to:

• Enroll in the complimentary credit monitoring service by Feb. 28, 2026
• Regularly review account statements and credit reports for unauthorized activity
• Consider placing a fraud alert or credit freeze with the major credit bureaus
• Report any suspected identity theft to the Federal Trade Commission and local law enforcement

CNHI also established a dedicated toll-free call center at 1-800-358-9154 to answer questions about the incident and the resources available.