Monterey Mushrooms Data Breach Exposes Social Security Numbers

Monterey Mushrooms LLC, the largest producer of fresh mushrooms in the United States, experienced a major data breach. An investigation revealed that a cybercriminal gained accessed to files containing sensitive information between Aug. 2 and Aug. 7, 2025. The cyberattack compromised personally identifiable information (PII).

A well-known ransomware group known as INC RANSOM claimed responsibility for the cyberattack and posted about the breach on their dark web leak site on Sept. 5, 2025. Exposed information included names, driver's license numbers, passport numbers and Social Security numbers.

The total number of impacted individuals has not been released, but the types of information exposed, pose a high risk for identity theft and fraud. Monterey Mushrooms has begun notifying impacted individuals by mail.

The data breach was also disclosed to the California, Maine and Massachusetts Attorney Generals' offices on Sept. 18, 2025. The data breach was reported to the Texas Attorney General's office on Sept. 19, 2025, noting 2,311 Texas residents impacted.

Monterey Mushrooms' response

After discovering the incident, Monterey Mushrooms acted quickly to secure their IT network and notified law enforcement. The company is offering impacted individuals a free one year membership to Epiq Privacy Solutions ID identity protection services.

If you receive notice from Monterey Mushrooms, you may want to:

• Sign up for the free identity protection services, provided by the company.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

For more information about the company visit the Monterey Mushrooms official site.