Huntington Hospitality Data Breach Affects 14,192 People

On July 18, 2025, Huntington Hospitality Financial Corp discovered a data breach that affected the personal information of 14,192 individuals in the United States.

This breach was first detected after the company noticed unusual activity in its computer network on Dec. 12, 2024. Upon investigation, it was determined that unauthorized access had occurred and that certain data stored within the company’s network environment may have been acquired without authorization on or about that date.

The compromised information includes sensitive personally identifiable information (PII) and protected health information (PHI): names, Social Security numbers, driver’s license numbers, government-issued ID numbers such as passport and state ID card details, and medical information.

The breach affected individuals across multiple states, including 1,296 in Texas and nine in Maine, with the remainder in other states.

After learning of the suspicious activity, Huntington Hospitality Financial Corp secured its systems and engaged cybersecurity experts to assist with the investigation. The company then undertook a thorough, months-long manual and programmatic review of potentially affected files, which concluded on July 18, 2025. The company began notifying affected individuals by U.S. mail on July 31, 2025.

The breach was reported to the California Attorney General on July 31, 2025, the Maine Attorney General on July 31, 2025, the Texas Attorney General on Aug. 1, 2025, and the Vermont Attorney General on Aug. 1, 2025.

Huntington Hospitality's response

Huntington Hospitality is offering complimentary credit monitoring and identity theft protection services through Identity Defense for up to 24 months. This service includes credit monitoring through Equifax, access to credit reports and scores, $1 million in identity theft insurance, identity restoration services, and dark web monitoring. Affected individuals must enroll by Oct. 31, 2025, using the activation code provided in their notification letter.

Given the nature of the information exposed, those affected are urged to remain vigilant by reviewing account statements and credit reports for suspicious activity.

Individuals are encouraged to consider placing a fraud alert or security freeze on their credit files and to report any suspected identity theft to law enforcement, the Federal Trade Commission, or their state attorney general.

More details about the company can be found on the Huntington Hotel Group website.