KLA Instruments Data Breach Affects Sensitive PII

On or around Aug. 5, 2025, KLA Corporation dba KLA Instruments detected unauthorized access to certain corporate systems. An investigation determined that a threat actor accessed and obtained certain files from KLA Instruments’ internal network.

The data breach compromised personally identifiable information (PII) belonging to an unknown number of individuals. Exposed information details have not been publicly disclosed, but may include names, addresses, dates of birth, Social Security numbers, driver's license numbers and financial account information.

KLA Instruments began notifying affected individuals by mail on Nov. 7, 2025. The cybersecurity incident was also disclosed to the Vermont Attorney General on Nov. 10, 2025.

KLA’s response

In response to the breach, KLA Instruments took steps to contain the incident and engaged both law enforcement and third-party forensic experts in the investigation. The company is also offering two years of free IDX credit monitoring and identity protection services, which includes a $1 million insurance reimbursement policy, identity restoration assistance and dark web monitoring.

If you receive a notice from KLA about this breach, you may want to:

• Sign up for the free IDX identity theft protection services by the Feb. 7, 2026 deadline.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

Impacted individuals with questions can also call 1-833-788-9712, Monday to Friday from 9 am – 9 pm Eastern Time for support.