Walters-Morgan Data Breach Exposes Social Security Info

The Walters-Morgan Construction, Inc. data breach has drawn attention due to its targeted nature and the sensitive information involved. The breach was the result of a ransomware attack by the group known as Sinobi.

On Aug. 20, 2025, Sinobi posted on the Tor network, claiming to have obtained data from Walters-Morgan. The attack method was ransomware, meaning the attackers likely encrypted company files and demanded payment in exchange for decryption or to prevent the release of stolen data.

The Sinobi group’s dark web post stated that they had accessed the organization’s data, which increases the risk of sensitive information being misused or sold.

The breach exposed personally identifiable information, specifically Social Security numbers.

On Feb. 18, 2026, Walters-Morgan disclosed the breach to the Massachusetts Office of Consumer Affairs and Business Regulation.

The total number of individuals affected is currently undisclosed; however, at least one individual in Massachusetts was affected.

Walters-Morgan Construction's response

Given that Social Security numbers were exposed, individuals who receive a notice from the company should take steps to protect their identity. This includes monitoring credit reports, placing fraud alerts or credit freezes with the major credit bureaus, and being vigilant for suspicious activity such as unfamiliar accounts or credit inquiries.

If any unauthorized activity is detected, it should be reported to the authorities and the credit bureaus promptly. Affected individuals should review the consumer notice for details on any support or resources available.

Because the breach was the result of a ransomware attack, it is possible that additional company data may have been compromised. Those who believe they may be affected should remain alert for phishing attempts or other fraudulent communications that may reference the breach.