RFK Racing Data Breach Affects Several Thousand

On May 14, 2025, Roush Fenway Keselowski Racing, LLC (RFK Racing) discovered suspicious activity on certain systems within its network. An investigation took place and revealed that a cybercriminal accessed or acquired files containing sensitive information.

A review took place and it was determined on Aug. 4, 2025 that the cybersecurity incident compromised personally identifiable information (PII) of an estimated 13,362 individuals. Information exposed may have included names, contact information, dates of birth, Social Security numbers and payment information.

The company notified affected individuals by written letter on Sept. 12, 2025. The breach was also disclosed to the Maine Attorney General’s office, the Massachusetts Attorney General’s office and the Vermont Attorney General’s office beginning on Sept. 12, 2025.

Roush Fenway Keselowski Racing's response

In addition to required state and federal disclosures, RFK Racing is offering affected individuals 24 free months of TransUnion Cyberscout single-bureau credit monitoring services.

If you receive notice from Roush Fenway Keselowski Racing about this breach, you may want to:

• Sign up for the free credit monitoring services, provided by the company.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

More information about the team can be found on the RFK Racing website.