FirstFruits Farms Data Breach Affects 6,335 Residents of WA, Exposing SSN

On Sept. 12, 2025, FirstFruits Farms LLC, a leading vertically integrated fruit producer based in Washington, discovered unusual activity within its computer systems.

The company secured its network and launched a forensic investigation with the help of cybersecurity experts. The investigation concluded on Dec. 18, 2025, and determined that unauthorized actors had accessed or acquired sensitive data belonging to employees and potentially other individuals connected to the company.

The Akira ransomware group claimed responsibility for the attack and posted about it on the Tor network on Nov. 21, 2025. The group stated they had obtained 26 GB of data, which reportedly included employee personal documents such as Social Security numbers, passports, W-9 forms, detailed financial information, customer data, contracts, project documentation and technical specifications.

By Dec. 29, 2025, Firstfruits Farms sent written notices to affected individuals.

The breach was officially disclosed to the Washington Attorney General on Jan. 16, 2026, affecting 6,335 Washington residents.

FirstFruits Farms's response

Following the discovery of the breach, FirstFruits Farms took action to secure its systems and prevent further unauthorized access. Additional security measures were implemented to reduce the risk of future incidents.

To support those affected, the company is offering complimentary identity protection services through IDX. These services include 12 months of credit monitoring, dark web monitoring, a $1 million identity fraud loss reimbursement policy and fully managed identity theft recovery services. Affected individuals can enroll in these services by March 29, 2026.

Those who received notification letters are encouraged to:

• Review account statements and credit reports for suspicious activity
• Consider placing a fraud alert or security freeze on credit files
• Take advantage of the free identity protection and credit monitoring services offered

The company also provided resources for reporting suspected identity theft and information on consumer rights under the Fair Credit Reporting Act.