WEL Companies Data Breach Affects 122,960 People, Exposing Social Security Numbers

On Nov. 19, 2025, transportation and logistics provider, WEL Companies Inc., reported a data breach that exposed that personally identifiable information (PII) of at least 122,960 individuals in the U.S.

On Jan. 31, 2025, Wel Companies identified suspicious activity on its network. The investigation determined that certain files were acquired without authorization on March 28, 2025. On or about November 12, 2025, after the investigation concluded, the company determined that an unauthorized threat actor gained access to certain individuals’ personal information on the company's system.

The attack has been attributed to the RansomHub ransomware group, which publicly claimed responsibility and stated they had obtained 189 GB of WEL Companies Inc.'s data. The group threatened to publish the stolen data on the dark web within days, increasing the potential risk for identity theft and fraud.

The types of information exposed in this incident includes names, dates of birth, Social Security numbers and driver's license or government-issued ID numbers. The exposure of PII is considered significant, as it could lead to identity theft, financial fraud and other privacy risks for those affected.

All states have not yet reported the data breach, but so far, the incident has affected at least 515 residents in Maine and 592 in New Hampshire. The cybersecurity incident was disclosed to the Attorney Generals' offices in California, Maine and New Hampshire on Nov. 19, 2025.

WEL Companies' response

Upon discovering the breach, WEL Companies immediately secured its network, engaged cybersecurity experts and launched a thorough investigation to determine the scope and impact. The company has since implemented enhanced security measures to help prevent future incidents.

In addition, the company is offering complimentary identity monitoring services through Kroll for all affected individuals. WEL Companies began notifying affected individuals by mail on Nov. 18, 2025.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from WEL Companies.
• Sign up for the free identity theft services through Kroll, offered by the company.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

The company has also established a dedicated assistance line for individuals with questions at 844-354-9425, available Monday through Friday, 9:00 a.m. to 6:30 p.m. ET.