Sprinkler Fitters Local 669 JATC Data Breach Exposes Social Security Numbers

On Jan. 28, 2026, the UA Sprinkler Fitters Local 669 Joint Apprenticeship and Training Committee (JATC) concluded its investigation into a cybersecurity incident that exposed sensitive personal information of thousands of individuals. The breach affected a total of 20,623 people in the United States, with 1,909 of those residing in Texas, 45 in Maine, and seven in New Hampshire.

The incident began when JATC detected suspicious activity on its computer systems on May 23, 2024. Forensic specialists were engaged to secure the network and determine the scope of the unauthorized access.

The investigation revealed that an international criminal group had gained access to JATC’s systems and copied files between May 17 and May 23, 2024. These files contained PII and PHI, including names, Social Security numbers, driver’s license numbers, government-issued ID number such as passport or state ID card, financial Information, account number, credit or debit card number, and medical Information.

The breach was reported to the attorneys general of California, Maine, New Hampshire, Oregon, Texas, and Vermont. The company began notifying affected individuals in writing on the same day.

JATC's response

JATC responded to the breach by securing its network and launching a comprehensive forensic investigation with the help of third-party cybersecurity experts. The committee notified federal law enforcement and began reviewing and enhancing its cybersecurity policies and technical safeguards to prevent future incidents.

To support those affected, JATC is offering complimentary single-bureau credit monitoring, credit report access and credit score services for one year through Cyberscout, a TransUnion company specializing in fraud assistance and remediation. Impacted individuals are encouraged to enroll in these services within 90 days of receiving their notification letter.

JATC has also provided detailed guidance on how to protect against identity theft and fraud. This includes instructions on how to obtain free annual credit reports, place fraud alerts or security freezes on credit files, and contact the major credit reporting bureaus.

The notice also encourages individuals to remain vigilant by monitoring account statements and credit reports for suspicious activity. Additional resources are provided for contacting the Federal Trade Commission, state attorneys general and law enforcement if identity theft or fraud is suspected.

Given the nature of the breach, those affected should take these protective steps seriously. Prompt enrollment in credit monitoring, regular review of credit reports and immediate action on any suspicious activity are strongly recommended.