Sun Communities Data Breach Exposes SSNs, Addresses, & More

On Feb. 6, 2026, Sun Communities Inc., a leading real estate investment trust specializing in manufactured home communities and RV resorts, reported a data breach in their systems. The breach was the result of a sophisticated social engineering attack.

On Dec. 25, 2025, and Jan. 5, 2026, an unknown third party posed as IT support and convinced two Sun Communities employees to complete a fraudulent multi-factor authentication (MFA) setup. This allowed the attacker to access company systems with the same permissions as the compromised users. The attacker then exfiltrated data from certain Sun file systems that the two user accounts could access.

Sun Communities first detected suspicious activity on Jan. 6, 2026, and activated incident response protocols. The company shut down certain systems, restricted access for the compromised accounts and engaged third-party forensic specialists to investigate and secure all systems.

The investigation concluded on Jan. 26, 2026, confirming that the breach was limited to the access rights of the two affected user accounts. The company has since analyzed the impacted files to identify what personal information was at risk.

The breach involved the unauthorized access, viewing or removal of sensitive personal information, including first and last name, address, date of birth, driver’s license, passport or national ID number, financial account information such as bank account and routing numbers, and Social Security number.

The breach was reported to the attorneys general of Maine, Massachusetts, and New Hampshire.

The incident affected 265 individuals with at least three residents in New Hampshire, two in Maine, and one in Massachusetts. As the investigation continues, there is a possibility of more individuals being impacted.

Sun Communities' response

In response to the breach, Sun Communities implemented several security measures. The company secured the affected accounts, prevented reuse of compromised credentials and enhanced monitoring for similar activity.

Additionally, Sun reinforced security awareness among employees, focusing on social engineering and MFA-related threats, and is implementing further recommendations from cybersecurity experts to strengthen administrative, technical and physical safeguards.

For those affected, Sun Communities is offering complimentary credit monitoring, identity theft protection and a $1 million identity theft insurance policy through Cyberscout, a TransUnion company. Affected individuals are encouraged to enroll in these services within 90 days of receiving their notification letter.

The company also recommends that individuals remain vigilant by monitoring their credit reports and financial accounts for suspicious activity, consider placing a fraud alert or security freeze with the major credit bureaus and report any suspected identity theft to law enforcement and the Federal Trade Commission.