MTI America Data Breach Exposes Social Security Numbers

MTI America, a healthcare solutions provider in the workers’ compensation industry, recently experienced a data breach that exposed sensitive information of an undisclosed number of individuals. The incident was officially disclosed to the New Hampshire Attorney General on Feb. 6, 2026, and involved the unauthorized access of data stored on the company’s computer network.

Between Sept. 6 and Sept. 9, 2025, an unauthorized party gained access to certain files on MTI America’s network. The company discovered the breach on Oct. 10, 2025, and launched an investigation with the help of third-party cybersecurity specialists.

The investigation determined that the breach was the result of a ransomware attack carried out by the Sinobi group, who claimed responsibility for the incident on a dark web posting dated Oct. 8, 2025. Sinobi stated they had obtained 120 GB of data, including financial data, customer data and contracts, and threatened to publish the information within a week.

A detailed internal analysis, supported by external data review specialists, revealed that the breached files contained the names and Social Security numbers of five New Hampshire residents. The company notified those affected by First Class mail on Feb. 6, 2026.

MTI America's response

In response to this ransomware attack, MTI America took several steps to secure its systems and protect affected individuals.

The company engaged third-party cybersecurity and data review specialists to investigate the incident, confirm the scope of the breach and ensure that no additional unauthorized access occurred. Additional technical measures were implemented to further strengthen the company’s network security.

For those affected, MTI America is offering 12 months of complimentary credit monitoring and identity protection services. Affected individuals are encouraged to take advantage of these services and to remain vigilant by monitoring their credit reports for any signs of suspicious activity.

The company also provided guidance on how to place fraud alerts or credit freezes and recommended contacting the Federal Trade Commission or law enforcement if identity theft is suspected.

Given the nature of the breach, anyone who receives a notification letter from MTI America should act promptly. It is important to enroll in the offered credit monitoring, review account statements and credit reports regularly and report any unusual activity immediately.