Ericsson Inc Data Breach Affects Over 4k: PHI and PII Exposed

Ericsson Inc, the U.S. subsidiary of Swedish telecommunications giant Telefonaktiebolaget LM Ericsson, recently experienced a data breach through one of its service providers. The breach affected at least 4,377 individuals in Texas, with the total number of impacted people likely higher nationwide.

The breach was first detected by the service provider on April 28, 2025, prompting an investigation with the help of external cybersecurity experts. It was determined that the breach occurred between April 17 and April 22, 2025, when an unauthorized party accessed or acquired a subset of files from the service provider’s systems.

A thorough review of the affected files was completed on February 23, 2026, confirming the inclusion of sensitive personal information.

The investigation revealed that the files contained a wide range of personally identifiable information (PII) and protected health information (PHI), including names, addresses, Social Security numbers, driver’s license numbers, government-issued ID numbers such as passports or state ID cards, financial information like account and credit card numbers, medical information, and dates of birth.

The Texas Attorney General and California Attorney General were notified of the data security incident starting on March 9, 2026.

Ericsson's response

Ericsson is offering complimentary identity protection services through IDX, a leading provider of consumer identity protection. Impacted individuals are eligible for either 12 or 24 months of credit monitoring, dark web monitoring, a $1 million identity fraud loss reimbursement policy, and fully managed identity theft recovery services.

The enrollment deadline for these services is June 9, 2026.

Ericsson has also advised affected individuals to remain vigilant by reviewing account statements and credit reports for any suspicious activity. They recommend placing a fraud alert or security freeze on credit files to help prevent unauthorized use of personal information.

The company has provided detailed instructions and contact information for the three major credit reporting agencies, Equifax, Experian and TransUnion, as well as resources from the Federal Trade Commission and state attorneys general.