Eversource Data Breach Impacts 3,049 Customers

Eversource Energy (NYSE: ES), a Fortune 500 utility company that delivers electricity, natural gas and water to customers across Connecticut, Massachusetts and New Hampshire, recently disclosed a data breach that affected approximately 3,049 individuals in the United States.

The breach was disclosed to the Maine Attorney General on May 21, 2026. Eversource Energy begin notifying affected consumers by written notice on May 27, 2026.

In April 2026, Eversource Energy was the victim of a cybercriminal phishing campaign.

Using those compromised credentials, the attackers were able to access a limited number of files within the company's systems.

The types of personal information exposed varied from person to person but may have included names, mailing and utility service addresses, account information, phone numbers, email addresses, Social Security numbers, driver's license numbers, federal identification numbers and financial account numbers.

Eversource Energy's response to the breach

Eversource Energy is offering affected individuals 24 months of complimentary identity protection services through IDX, a data breach and recovery services provider.

Affected individuals can enroll in these free services by visiting the IDX enrollment page or by calling 1-833-788-9712 from 9 a.m. to 9 p.m. Eastern Time, Monday through Friday (excluding holidays). The deadline to enroll is Aug. 27, 2026.