Hana Financial Inc. Data Breach Affects Customers

Hana Financial Inc., a Los Angeles-based non-bank specialty financial institution, experienced a data breach. On July 5, 2025, the ransomware group Sinobi claimed responsibility for a cyberattack. The attackers reportedly obtained sensitive company data and posted about the hack on a dark web forum on the Tor network.

The breach involved the exposure of personally identifiable information (PII). Compromised information may include names, dates of birth, Social Security numbers and financial account information.

Hana Financial began notifying affected individuals by mail on Sept. 25, 2025. The cybersecurity incident was also disclosed to the Massachusetts Attorney General's office on the same day.

Hana Financial's response

In addition to required state and federal disclosures, the company is offering affected individuals 24 free months of TansUnion Cyberscout credit monitoring and identity protection services.

If you receive a notice from Hanna Financial about this breach, you may want to:

• Sign up for the free credit monitoring services, offered by the company.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

For more information about the financial company, visit the Hana Financial Inc. website.