RiteCheck Data Breach Exposes Social Security Numbers: 68,587 Affected

On Aug. 25, 2024, Bronx and Harlem-based, RiteCheck Cashing Inc., discovered unusual activity within its systems. An investigation revealed that an unauthorized user had gained access to a RiteCheck server, exposing sensitive information belonging to customers and employees. The breach was significant in scope, affecting 68,587 people.

The compromised data included a wide range of personally identifiable information (PII): names, addresses, dates of birth, Social Security numbers, driver’s license numbers, government-issued ID numbers and payment card numbers.

The breach was formally disclosed to the Maine Attorney General’s office on July 28, 2025, and affected individuals began receiving written notification on July 25, 2025. The data breach was reported to the New Hampshire Attorney General's office on Aug. 1, 2025.

The cybersecurity incident was also reported to the Massachusetts Attorney General's office on Aug. 8, 2025, with 58 Massachusetts residents affected.

According to the notice submitted to the Maine Attorney General, the company determined that the unauthorized access was limited to a specific server, but the review of its contents confirmed that sensitive personal data had been exposed.

RiteCheck Cashing, Inc.'s response

To support those affected, RiteCheck is offering 12 months of complimentary credit monitoring and identity protection services through Cyberscout, a TransUnion company. Individuals whose data was exposed are encouraged to take advantage of these services, monitor their financial accounts closely and remain vigilant for any signs of identity theft or fraud.

Given the sensitive nature of Social Security numbers, affected individuals should also consider placing fraud alerts or security freezes on their credit files.

Additional information about RiteCheck can be found on the RiteCheck website.