Home
>
Data Breach>Five States Energy

Five States Energy Data Breach Exposes Social Security Numbers

Published
April 2, 2026
Updated
April 10, 2026
Five States Energy Data Breach Exposes Social Security Numbers
Five States Energy
Affected by the data breach? You may be entitled to compensation. Submit a claim today.

Five States Energy Co., a private equity investment firm investing in the energy sector and based in Dallas, Texas, disclosed a data breach that may have exposed sensitive personal and financial information for 2,251 individuals.

The breach was reported to the attorneys general of Maine, New Hampshire, and Texas starting on April 2, 2026, with 653 Texas residents, 10 New Hampshire residents, and nine Maine residents identified as affected. Additionally, on April 8, 2026, a disclosure was filed with the Vermont Attorney General.

Five States discovered the breach on Feb. 12, 2026, and began notifying affected individuals on March 26, 2026.

Five States detected and stopped a compromise of its network environment on Feb. 12, 2026. The company immediately secured and remediated the compromise. It then engaged third-party experts to conduct a digital forensic investigation into the full extent of the unauthorized activity.

The investigation determined that certain investment files containing personal and financial information were subject to unauthorized access, including full names, dates of birth, contact information, Social Security numbers and bank account numbers.

Five States Energy's response

Given the sensitive nature of the information involved, Five States is offering 24 months of free credit monitoring and identity protection services through CyberScout, a TransUnion company. These services provide alerts when changes occur to a credit file and include proactive fraud assistance.

To enroll, affected individuals can visit CyberScout's activation page and enter the unique code included in their notification letter. Enrollment must be completed within 90 days of the letter's date. The enrollment requires an internet connection and email account and may not be available to minors under 18.

According to the notification, the company has no evidence of fraud or misuse of personal information arising from the incident at this time. Five States also noted it is continuously enhancing the security of its systems and focusing on awareness training and data security assessments.

Individuals with questions can call 833-877-5095 between 8:00 a.m. and 8:00 p.m. EST, Monday through Friday, excluding U.S. holidays.

SUBMIT YOUR CLAIM TO THE LAW FIRM HANDLING THIS INVESTIGATION

Types of INFORMATION affected
  • Names
    Names
  • Social security numbers
    Social Security Numbers
  • Dates of birth
    Dates of Birth
  • Addresses
    Addresses
  • Government IDs
    Government IDs
  • Medical Information
    Medical Info
  • Financial Info
    Financial Info
  • Affected information types not yet disclosed

Notice Letter

This browser does not support inline PDFs. Please download the PDF to view it: Download PDF

Sources

Disclosures

Breach Summary

Affected Entity
Five States Energy
Consumers Notification date
March 26, 2026
Date of Breach
Breach Discovered Date
February 12, 2026
Total People Affected
2251
Information Types Exposed
  • Name of individual
  • Address
  • Social Security Number Information
  • Financial Information
  • account number
  • bank account number
  • contact information
  • credit or debit card number
  • date of birth
  • full name

Data Breach Settlements

QPharma Data Breach Class Action Settlement
Absolute Dental Group $3.3 Million Data Breach Settlement
Alabama Ophthalmology Associates $850K Data Breach Settlement
Anne Arundel Dermatology $2.4M Data Breach Settlement
CSC ServiceWorks Data Breach Class Action Settlement
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image

What to Read Next

David Evans Enterprises Data Breach: 8,915 Affected
April 13, 2026
David Evans Enterprises Data Breach: 8,915 Affected
RCI Hospitality Holdings Data Breach Exposes Sensitive Info Including SSNs
April 13, 2026
RCI Hospitality Holdings Data Breach Exposes Sensitive Info Including SSNs
Legend Senior Living Data Breach Exposes Personal and Financial Data
April 13, 2026
Legend Senior Living Data Breach Exposes Personal and Financial Data
Rocky Mountain: Data Breach Affects 50,640
April 13, 2026
Rocky Mountain: Data Breach Affects 50,640