Miami Management Data Breach Exposes Social Security Numbers

A recent ransomware attack has impacted Miami Management, a leading property management company in South Florida. On Sept. 10, 2025, the company detected suspicious activity within its network.

A subsequent investigation, aided by cybersecurity specialists, determined that an unauthorized actor accessed certain systems between Sept. 8 and Oct. 9, 2025. During this time, files were viewed or copied by the attacker.

The severity of the breach is underscored by the involvement of the Sarcoma ransomware group, which claimed responsibility for the attack. On Sept. 22, 2025, Sarcoma posted on the dark web, revealing the full domain name of the company and sharing samples of 2.4 TB of data, with claims of having exfiltrated 4.9 TB in total.

The group threatened to publish all stolen data within a week. The attack and data leak were announced on the Tor network, highlighting the significant risk of further exposure of sensitive information.

According to various state attorney general disclosures, the breach resulted in the exposure of names and driver’s license numbers. Claim Depot has reviewed notices sent to those affected and can confirm Social Security numbers were also exposed in the breach.

The incident was disclosed to the Indiana Attorney General, the Massachusetts Office of Consumer Affairs and Business Regulation and the New Hampshire Attorney General, revealing that five Massachusetts residents and one New Hampshire residents were affected.

Miami Management's response

Upon discovering the suspicious activity, Miami Management acted to secure its systems and launched a comprehensive investigation with the help of cybersecurity experts. The company conducted a thorough review of the affected files to determine what information was compromised and began notifying impacted individuals as soon as possible.

Miami Management has also stated that it is reviewing and enhancing its security policies, procedures and tools to reduce the likelihood of similar incidents in the future.

To support those affected, Miami Management is offering twelve months of complimentary identity protection and credit monitoring services through Epiq. Impacted individuals can enroll in these services, which include credit monitoring, dark web surveillance, identity restoration assistance and up to $1 million in identity theft insurance.

The company also provided detailed instructions on how to place fraud alerts or credit freezes with the major credit bureaus.

Given the nature of the breach, it is important for anyone who receives a notification from Miami Management Inc. to take the following steps:

• Enroll in the free credit monitoring and identity protection services provided
• Monitor credit reports and financial accounts for unusual activity
• Consider placing a fraud alert or credit freeze with Equifax, Experian and TransUnion
• Remain vigilant for phishing attempts, suspicious emails or communications referencing the breach