Sun Communities Data Breach Exposes SSNs, Addresses, & More

On Feb. 6, 2026, Sun Communities Inc., a leading real estate investment trust specializing in manufactured home communities and RV resorts, reported a data breach to the New Hampshire Attorney General. The breach was the result of a sophisticated social engineering attack.

On Dec. 25, 2025, and Jan. 5, 2026, an unknown third party posed as IT support and convinced two Sun Communities employees to complete a fraudulent multi-factor authentication (MFA) setup. This allowed the attacker to access company systems with the same permissions as the compromised users. The attacker then exfiltrated data from certain Sun file systems that the two user accounts could access.

Sun Communities first detected suspicious activity on Jan. 6, 2026, and activated incident response protocols. The company shut down certain systems, restricted access for the compromised accounts and engaged third-party forensic specialists to investigate and secure all systems.

The investigation concluded on Jan. 26, 2026, confirming that the breach was limited to the access rights of the two affected user accounts. The company has since analyzed the impacted files to identify what personal information was at risk.

The breach involved the unauthorized access, viewing or removal of sensitive personal information, including first and last name, address, date of birth, driver’s license, passport or national ID number, financial account information such as bank account and routing numbers, and Social Security number.

The incident affected at least three residents in New Hampshire, with the possibility of more individuals being impacted as the investigation continues.

Sun Communities' response

In response to the breach, Sun Communities implemented several security measures. The company secured the affected accounts, prevented reuse of compromised credentials and enhanced monitoring for similar activity.

Additionally, Sun reinforced security awareness among employees, focusing on social engineering and MFA-related threats, and is implementing further recommendations from cybersecurity experts to strengthen administrative, technical and physical safeguards.

For those affected, Sun Communities is offering complimentary credit monitoring, identity theft protection and a $1 million identity theft insurance policy through Cyberscout, a TransUnion company. Affected individuals are encouraged to enroll in these services within 90 days of receiving their notification letter.

The company also recommends that individuals remain vigilant by monitoring their credit reports and financial accounts for suspicious activity, consider placing a fraud alert or security freeze with the major credit bureaus and report any suspected identity theft to law enforcement and the Federal Trade Commission.