First Meridian Services Data Breach Exposes Social Security Numbers

On Feb. 9, 2026, First Meridian Services, Inc., an airport hospitality and retail group based in Colorado, disclosed a data breach to the New Hampshire Attorney General. The breach affected two New Hampshire residents and involved the unauthorized access and exfiltration of files containing sensitive personal information.

According to the disclosure the incident began when suspicious activity was detected in the company’s computer network on Sept. 5, 2025. First Meridian Services engaged outside counsel and cybersecurity experts to investigate the incident.

The forensic investigation determined that an unauthorized third party gained access to a portion of the company’s environment for a couple of days in early September and exfiltrated files from internal file shares.

A data-review firm was then brought in to analyze the contents of the affected files, and their results were provided on Dec. 10, 2025. The company and its counsel took additional time to validate contact information for those affected before preparing notification letters.

The breach exposed personally identifiable information, specifically Social Security numbers and driver’s license numbers.

So far, two individuals in New Hampshire have been affected. The investigation is ongoing.

First Meridian Services's response

First Meridian Services responded by hiring third-party cybersecurity experts to contain and investigate the breach. They conducted a thorough forensic investigation and worked with a data-review firm to identify the specific files and individuals affected.

After confirming the impacted individuals and their contact information, the company began mailing notification letters on Feb. 10, 2026.

First Meridian Services is offering 12 months of complimentary credit monitoring and identity theft protection services through Experian’s IdentityWorks to those affected.

The company has also taken several steps to strengthen its cybersecurity posture, including enhancing password requirements, expanding server monitoring, auditing account permissions, evaluating additional endpoint detection, updating network security controls, reassessing account privileges, adding more segmentation and moving sensitive data to more secure environments.

Those affected are encouraged to remain vigilant for signs of unauthorized financial activity, review their account statements and credit reports and consider placing fraud alerts or security freezes with the major credit bureaus.

The company has provided a dedicated phone line for questions and assistance at 877-421-8526.