Alpha Omega Winery, a boutique winery based in Rutherford, California, experienced a ransomware attack between December 27–28, 2023, leading to unauthorized access to sensitive consumer data. The breach exposed personally identifiable information (PII), including names, dates of birth, Social Security numbers, driver’s license/state ID numbers, financial details (account/credit/debit card numbers), medical records, and health insurance information. While the incident was contained shortly after discovery, the exposure of such critical data poses severe risks, including identity theft, financial fraud, and medical identity misuse.The company disclosed the breach to the California and Massachusetts Attorneys General in November 2025 and is notifying affected individuals via mail. Victims are being offered free credit monitoring (TransUnion) and fraud assistance (Cyberscout) to mitigate risks. Legal firms are investigating potential class-action lawsuits, as impacted individuals may seek compensation for financial losses, time spent resolving issues, and emotional distress. The breach underscores significant vulnerabilities in the winery’s cybersecurity defenses, particularly given the highly sensitive nature of the leaked data and the involvement of ransomware, which amplifies the threat severity.
Source: https://www.claimdepot.com/investigations/alpha-omega-winery-data-breach-2025
TPRM report: https://www.rankiteo.com/company/alpha-omega-winery
"id": "alp1902319111525",
"linkid": "alpha-omega-winery",
"type": "Ransomware",
"date": "12/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Winery/Hospitality',
'location': 'Rutherford, California, USA',
'name': 'Alpha Omega Winery, LLC',
'type': 'Private Company'}],
'customer_advisories': ['Monitor financial accounts for unauthorized '
'activity.',
'Enroll in free TransUnion credit monitoring and '
'Cyberscout fraud assistance.',
'Consider placing a fraud alert or credit freeze.',
'Contact legal representatives (e.g., Shamis & '
'Gentile P.A.) for compensation eligibility.'],
'data_breach': {'data_exfiltration': 'Likely (data exposed during ransomware '
'incident)',
'personally_identifiable_information': ['name',
'date of birth',
'Social Security '
'number',
"driver's "
'license/state ID '
'number',
'health insurance '
'information'],
'sensitivity_of_data': 'High (includes SSNs, financial data, '
'medical records)',
'type_of_data_compromised': ['personally identifiable '
'information (PII)',
'financial information',
'medical/health information']},
'date_detected': '2023-12-27',
'description': 'Alpha Omega Winery, a family-owned boutique winery in '
'Rutherford, California, experienced a ransomware attack '
'between December 27–28, 2023, resulting in unauthorized '
'access to sensitive consumer information, including '
'personally identifiable information (PII), financial data, '
'and medical/health records. The breach was contained shortly '
'after discovery. The incident was disclosed to regulatory '
'authorities in November 2025, with affected individuals '
'notified by mail. The company offered free credit monitoring '
'and fraud assistance services (TransUnion and Cyberscout) to '
'impacted parties.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'exposure of sensitive PII and health '
'data; class action investigation '
'initiated by Shamis & Gentile P.A.',
'data_compromised': ['name',
'date of birth',
'Social Security number',
"driver's license/state ID number",
'financial information (account number, '
'credit/debit card number)',
'medical information',
'health insurance information'],
'identity_theft_risk': 'High (exposure of SSNs, financial data, '
'and medical records)',
'legal_liabilities': 'Potential lawsuits for compensation '
'(reimbursement, emotional distress, time '
'spent addressing breach); regulatory '
'notifications to California and '
'Massachusetts Attorneys General.',
'payment_information_risk': 'High (credit/debit card numbers and '
'account details exposed)'},
'investigation_status': 'Under investigation by Shamis & Gentile P.A. (class '
'action law firm); regulatory disclosures filed (Nov. '
'2025).',
'ransomware': {'data_encryption': 'Likely (ransomware incident implied '
'encryption)',
'data_exfiltration': 'Likely (sensitive data exposed)'},
'recommendations': ['Sign up for free credit monitoring (TransUnion) and '
'fraud assistance (Cyberscout).',
'Monitor financial statements for suspicious activity.',
'Place a fraud alert with credit bureaus.',
'Request free annual credit reports.',
'Seek legal counsel for potential compensation '
'(reimbursement, emotional distress).'],
'references': [{'source': 'Shamis & Gentile P.A. (Class Action Investigation '
'Notice)'},
{'source': 'Alpha Omega Winery Data Breach Notice (via mail)'}],
'regulatory_compliance': {'legal_actions': 'Potential class action lawsuits '
'(investigated by Shamis & Gentile '
'P.A.)',
'regulatory_notifications': ['California Attorney '
'General (disclosed '
'Nov. 6, 2025)',
'Massachusetts '
'Attorney General '
'(disclosed Nov. 7, '
'2025)']},
'response': {'communication_strategy': 'Notification to impacted individuals '
'via mail; disclosure to California '
'and Massachusetts Attorneys General '
'(Nov. 6–7, 2025).',
'containment_measures': 'Breach contained shortly after '
'discovery (details unspecified)',
'incident_response_plan_activated': 'Yes (breach contained '
'shortly after discovery)',
'recovery_measures': ['Free credit monitoring (TransUnion)',
'Fraud assistance (Cyberscout)'],
'third_party_assistance': ['TransUnion (credit monitoring)',
'Cyberscout (fraud assistance)']},
'stakeholder_advisories': 'Impacted individuals notified via mail; credit '
'monitoring and fraud assistance offered.',
'title': 'Alpha Omega Winery Ransomware and Data Breach Incident (December '
'2023)',
'type': ['ransomware', 'data breach']}