NPK International Data Breach Affects PII & PHI

NPK International Inc., a nationwide provider of site access solutions in the construction industry, experienced a major data breach. The cybersecurity incident exposed both personally identifiable information (PII) and protected health information (PHI).

Compromised information includes names, addresses, Social Security numbers, driver's license, state ID and passport numbers, medical information such as health insurance details, and financial information such as bank account and routing numbers or credit and debit card information. The total number of impacted individuals has not been released but may include thousands of people across the United States.

NPK International disclosed the cybersecurity incident to the Texas Attorney General's office on Sept. 4, 2025, reporting at least 1,490 Texans affected by the breach.

NPK International's response

In addition to state and federal disclosures, NPK International will notify affected consumers of the breach, as required by law. It is standard practice for organizations facing this type of breach to offer credit monitoring or identity protection services.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from NPK International.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

To learn more about NPK International Inc., visit the company’s official website.