**Rockrose Development Suffers Major Data Breach in July 2025, Impacting 47,000 Individuals**
Rockrose Development, a New York-based real estate firm, confirmed a July 2025 data breach exposing sensitive personal information of 47,392 residents and employees. The compromised data includes names, Social Security numbers, taxpayer IDs, driver’s license and passport numbers, financial account details, health insurance records, medical information, and online credentials.
The ransomware group Play claimed responsibility for the attack, alleging it stole documents related to clients, payroll, accounting, and taxes. Rockrose has not verified the gang’s claims, nor disclosed whether a ransom was paid or how the breach occurred. The company is offering affected individuals 24 months of free identity protection through Experian, with an enrollment deadline of March 31, 2026.
Play, active since June 2022, employs a double-extortion tactic, demanding payment for both decryption keys and to prevent public release of stolen data. In 2025 alone, the group has claimed 41 confirmed attacks and 339 unconfirmed incidents, with construction and real estate firms among its recent targets. Other victims this year include Rock Solid Stabilization & Reclamation, Gorham Sand & Gravel, Thomas Safran & Associates, and All States Materials Group.
The Rockrose breach is the largest ransomware attack on a U.S. construction or real estate firm tracked since 2018, accounting for the majority of the 69,513 records compromised in the sector this year. Such attacks can disrupt critical operations, including payroll, billing, and communication systems, while exposing victims to fraud risks.
Founded in 1970, Rockrose has developed over 15,000 residential units and nearly 6 million square feet of office space in New York and Washington, D.C.
Source: https://www.comparitech.com/news/nyc-dc-real-estate-developer-notifies-47000-people-of-data-breach/
Barrett Industries cybersecurity rating report: https://www.rankiteo.com/company/barrett-industries
"id": "BAR1765887231",
"linkid": "barrett-industries",
"type": "Ransomware",
"date": "12/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '47392',
'industry': 'Real Estate, Construction',
'location': 'New York, Washington, DC',
'name': 'Rockrose Development',
'type': 'Company'}],
'customer_advisories': '24 months of free identity protection through '
'Experian (enrollment deadline: March 31, 2026)',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '47392',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Social Security numbers',
'Taxpayer identification numbers',
'Driver’s license numbers',
'Passport numbers',
'Financial account and routing '
'numbers',
'Health insurance info',
'Medical info',
'Online account credentials']},
'date_detected': '2025-07',
'description': 'Rockrose Development confirmed a data breach in July 2025 '
'that compromised personal information of residents and '
'employees. The ransomware gang Play claimed responsibility '
'for the breach, stating they stole documents related to '
'clients, budget, payroll, accounting, taxes, IDs, and '
'financial information.',
'impact': {'brand_reputation_impact': 'Yes',
'data_compromised': 'Personal and sensitive information',
'identity_theft_risk': 'Yes',
'operational_impact': 'Disruption of critical operations including '
'communication systems, access to files, '
'ordering, billing, payroll, websites',
'payment_information_risk': 'Yes'},
'investigation_status': 'Ongoing',
'motivation': 'Financial gain, Data exfiltration',
'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'Play'},
'references': [{'source': 'Comparitech'}],
'response': {'communication_strategy': 'Victim notification',
'third_party_assistance': 'Experian (identity protection)'},
'threat_actor': 'Play',
'title': 'Rockrose Development Data Breach',
'type': 'Data Breach, Ransomware'}