Barnhart Group Hit by Akira Ransomware Attack, Exposing Sensitive Data of 1,435 Individuals
Barnhart Group, a Pennsylvania-based transportation and logistics firm with over 50 U.S. locations, suffered a ransomware attack by the Akira cybercriminal group. The breach was disclosed on the dark web on November 14, 2025, with attackers claiming to have exfiltrated sensitive corporate and personal data.
The company reported the incident to the Maine, Texas, and Vermont Attorneys General, confirming that 1,435 individuals including 434 Texas residents and two Maine residents were affected. Impacted parties were notified via U.S. mail.
Confirmed exposed data includes:
- Names, Social Security numbers, and driver’s license details
- Government-issued IDs (passports, state IDs)
- Medical and financial records (account numbers, credit/debit card details)
- Corporate documents (invoices, NDAs, audit reports)
Akira also alleged access to emails, phone numbers, and confidential records, though these claims remain unverified in public disclosures. Barnhart Group has not confirmed whether a ransom was paid.
The breach highlights ongoing risks to supply chain and logistics firms, sectors increasingly targeted by ransomware groups for their access to critical infrastructure and sensitive data. Legal investigations are underway, with affected individuals potentially eligible for compensation under state and federal data protection laws.
Source: https://www.claimdepot.com/investigations/barnhart-group-data-breach-2026
Barnhart Crane & Rigging cybersecurity rating report: https://www.rankiteo.com/company/barnhart-crane-&-rigging
"id": "BAR1770317397",
"linkid": "barnhart-crane-&-rigging",
"type": "Ransomware",
"date": "11/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': '1,435 individuals',
'industry': 'Logistics',
'location': 'Pennsylvania, USA',
'name': 'Barnhart Group',
'size': '50+ U.S. locations',
'type': 'Transportation and Logistics'}],
'customer_advisories': 'Affected individuals notified via U.S. mail',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '1,435',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Social Security numbers',
'Driver’s license details',
'Government-issued IDs '
'(passports, state IDs)',
'Medical records',
'Financial records (account '
'numbers, credit/debit card '
'details)',
'Corporate documents (invoices, '
'NDAs, audit reports)',
'Emails',
'Phone numbers',
'Confidential records']},
'date_publicly_disclosed': '2025-11-14',
'description': 'Barnhart Group, a Pennsylvania-based transportation and '
'logistics firm, suffered a ransomware attack by the Akira '
'cybercriminal group, exposing sensitive corporate and '
'personal data of 1,435 individuals.',
'impact': {'data_compromised': 'Sensitive corporate and personal data',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential compensation under state and '
'federal data protection laws',
'payment_information_risk': 'High'},
'investigation_status': 'Ongoing',
'lessons_learned': 'Highlights ongoing risks to supply chain and logistics '
'firms, increasingly targeted by ransomware groups for '
'access to critical infrastructure and sensitive data.',
'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'Akira'},
'references': [{'date_accessed': '2025-11-14',
'source': 'Dark web disclosure'}],
'regulatory_compliance': {'legal_actions': 'Legal investigations underway',
'regulatory_notifications': ['Maine Attorney '
'General',
'Texas Attorney '
'General',
'Vermont Attorney '
'General']},
'response': {'communication_strategy': 'Notified affected individuals via '
'U.S. mail'},
'threat_actor': 'Akira',
'title': 'Barnhart Group Hit by Akira Ransomware Attack',
'type': 'Ransomware'}