.png)
FullBeauty Brands Data Breach Exposes 161 GB of PII and PHI Data
On Oct. 22, 2025, FullBeauty Brands, Inc., a leading direct-to-consumer retailer specializing in plus-size and big-and-tall apparel, experienced a data breach affecting portions of its internal computer network.
The breach was discovered after the Everest ransomware group claimed responsibility for infiltrating the company’s systems and stealing approximately 161 GB of data. During the time of access, between Oct. 18 and Nov. 19, 2025, cybercriminals acquired copies of a subset of the company’s files, including sensitive employment-related records.
A detailed review determined that the compromised files contained personally identifiable information (PII) and protected health information (PHI). Specifically, the exposed data included names, Social Security numbers and health plan enrollment information.
Starting on on Jan. 21, 2026, the incident was officially disclosed to the New Hampshire Attorney General and the Texas Attorney General. The company began mailing written notices to those affected on Jan. 16, 2026.
The breach has affected 1,185 Texas residents and six New Hampshire residents. The total number of individuals is unknown at this time.
FullBeauty Brands's response
In response to the breach, FullBeauty Brands has since implemented additional security measures to strengthen its network defenses and is increasing employee training to raise awareness of cybersecurity threats.
For those affected, the company is offering one year of complimentary credit monitoring and identity theft protection services through Experian IdentityWorks. This service includes credit monitoring, identity restoration support and up to $1 million in identity theft insurance.
Given the ransomware nature of the attack and the types of information exposed, individuals who receive a notification letter should consider taking the following steps:
- Enroll in the complimentary credit monitoring and identity protection services provided
- Review account statements and credit reports regularly for unauthorized activity
- Place a fraud alert or security freeze on credit files with the major credit bureaus if concerned about potential identity theft
- Report any suspected identity theft to the Federal Trade Commission and local law enforcement
A dedicated toll-free call center (844-354-0077) has also been established to answer questions from those impacted.
Names
Social Security Numbers
Dates of Birth
Addresses
Government IDs
Medical Info
Financial Info- Affected information types not yet disclosed
Data Breach Settlements
.webp)
.webp)
.webp)
.webp)
.webp)
.webp)
.webp)
What to Read Next
Subscribe to our weekly class actions newsletter.
.svg)