Home
>
Data Breach>Rich Products

Rich Products Data Breach: SSNs and Government IDs Exposed

Published
April 24, 2026
Updated
May 28, 2026
Rich Products Data Breach: SSNs and Government IDs Exposed
Rich Products
Affected by the data breach? You may be entitled to compensation. Submit a claim today.

Rich Products Corp., a family-owned food company headquartered in Buffalo, New York, has disclosed a data breach that originated at its third-party service provider, First Advantage Corp.

The breach began with a phishing attack that targeted a single employee at First Advantage Corp. The compromised account belonged to an employee in First Advantage's Drug & Occupational Health Screening Unit, a division that handles drug testing and occupational health screening processes.

On or about Nov. 13, 2025, an unauthorized third party gained access to the employee's email account. First Advantage discovered the unauthorized access four days later, on Nov. 17, 2025, and took steps to contain the incident.

The subsequent investigation determined that the attacker was able to use the compromised employee's account to download the full contents of the employee's email inbox. The incident was limited to this single email account and did not impact First Advantage's broader network, systems or service platforms, according to the filing.

The types of information exposed included first and last name, driver's license number, Social Security number and date of birth. The specific combination of information affected varies depending on the individual record, according to the notification.

Rich Products was not notified of the incident until more than four months after First Advantage first discovered the unauthorized access.

The breach was reported to the Maine Attorney General and New Hampshire Attorney General. Consumer notification letters were sent out to affected individuals on April 21, 2026.

Rich Products' response to the breach

First Advantage is offering affected individuals 24 months of complimentary credit monitoring and identity protection services through Cyberscout, a TransUnion company. The package includes credit monitoring, fraud consultation and identity theft restoration. Individuals can activate their services by visiting the Cyberscout activation page.

The deadline to activate is July 21, 2026.

A dedicated call center has been established to answer questions about the incident. Affected individuals can call 833-289-5957 between 8 a.m. and 8 p.m. Eastern Time, Monday through Friday, excluding major U.S. holidays.

SUBMIT YOUR CLAIM TO THE LAW FIRM HANDLING THIS INVESTIGATION

Types of INFORMATION affected
  • Names
    Names
  • Social security numbers
    Social Security Numbers
  • Dates of birth
    Dates of Birth
  • Addresses
    Addresses
  • Government IDs
    Government IDs
  • Medical Information
    Medical Info
  • Financial Info
    Financial Info
  • Affected information types not yet disclosed

Notice Letter

This browser does not support inline PDFs. Please download the PDF to view it: Download PDF

Sources

Disclosures

Breach Summary

Affected Entity
Rich Products
Consumers Notification date
April 22, 2025
Date of Breach
Breach Discovered Date
November 17, 2025
Total People Affected
200
Information Types Exposed
  • Data Elements
  • date of birth
  • driver's license number
  • first and last name
  • social security number

Data Breach Settlements

GeoLogics Corp. Data Breach Class Action Settlement
Belle Tire Distributors Data Breach Class Action Settlement
Labcorp $35 Million Data Breach Class Action Settlement
Ciuni & Panichi Data Breach Class Action Settlement
Oak View Group $824,000 Data Breach Class Action Settlement
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image

What to Read Next

Fintech Holdco Data Breach: Social Security Numbers Exposed
June 8, 2026
Fintech Holdco Data Breach: Social Security Numbers Exposed
Fintech Holdco Data Breach: Social Security Numbers Exposed
June 8, 2026
Fintech Holdco Data Breach: Social Security Numbers Exposed
Delaware North Data Breach Exposes Driver's License Numbers
June 8, 2026
Delaware North Data Breach Exposes Driver's License Numbers
Amicus Solutions Data Breach: PHI and PII Exposed
June 8, 2026
Amicus Solutions Data Breach: PHI and PII Exposed