Landmark Properties Data Breach Exposes 1.2TB of Data

Published

June 7, 2025

Updated

June 9, 2025

Landmark Properties

Types of INFORMATION affected

Names
Social Security Numbers
Dates of Birth
Addresses
Government IDs
Medical Info
Financial Info

National student housing developer, Landmark Properties, recently suffered a data breach after falling victim to a ransomware attack. On May 20, 2025, the cybercriminal group known as MORPHEUS posted on its dark web leak site that it had compromised Landmark Properties’ systems and exfiltrated approximately 1.2 terabytes of sensitive data.

The attackers claimed to have accessed an array of information, including financial documents, accounting records, confidential agreements, HR records, active deal details, client information, development plans, marketing materials, property-related documents, and construction documentation. Data samples shared by the group included copies of passports (some expired), financials, and other documents marked as “confidential.”

This breach potentially impacts a broad spectrum of individuals and entities, including clients, employees, and business partners of Landmark Properties. The exposed personally identifiable information (PII) could be leveraged for identity theft, financial fraud, or corporate espionage.

Landmark Properties’s response

As of this writing, Landmark Properties has not released a public statement detailing its response to the breach. The company was contacted for comment, and updates are expected as more information becomes available. Given the scale and nature of the data compromised, affected individuals and organizations should take immediate steps to protect themselves.

If you believe your information may have been involved, consider the following actions:

Monitor your financial accounts and credit reports for unusual activity.
Be vigilant for phishing emails or suspicious communications that may reference confidential or personal information.
Consider placing a fraud alert or credit freeze with major credit bureaus.
Notify your organization’s IT and legal teams if you are a business partner or client of Landmark Properties.
Stay alert for updates from Landmark Properties regarding support resources or further instructions.

Because the breach involved sensitive personal and financial data, the risk of identity theft and fraud is elevated.

Protect Your Data

A breach notice means your personal details could be circulating far beyond the organization involved. One practical step is continuous monitoring: services such as Identity Defender (included with an ExpressVPN subscription) can automatically check dark-web markets, flag new credit-file activity, and request removal of your information from data-broker sites.

This kind of “early-warning system” can’t undo a breach, but it can help you spot misuse quickly and limit further exposure. ExpressVPN is offering 61% off, risk-free for 30 days, with ID Theft Insurance included and no extra cost for those who sign up for one or two years.