Fujifilm Biotechnologies experienced a data breach exposing sensitive personally identifiable information (PII) and protected health information (PHI) of at least 1,709 current and former employees (1,675 in Texas and 34 in Massachusetts). The compromised data included names, addresses, Social Security numbers, driver’s license numbers, government-issued ID numbers (passports, state IDs), health insurance details, and dates of birth—a high-value combination for identity theft. The breach was disclosed to state attorneys general in October 2025, though no evidence of misuse has been confirmed yet.The company responded by offering 24 months of complimentary credit monitoring, dark web surveillance, SSN tracking, and up to $1M in identity theft insurance via Epiq’s Privacy Solutions ID. Affected individuals were notified by mail and urged to enroll in protective services, including credit freezes and fraud alerts. While Fujifilm emphasized proactive mitigation, the exposure of both PII and PHI elevates risks of long-term identity fraud, financial scams, or medical identity theft. The breach underscores vulnerabilities in handling employee data, particularly in sectors managing health-related information.
Source: https://www.claimdepot.com/data-breach/fujifilm-2025
TPRM report: https://www.rankiteo.com/company/fujifilm-biotechnologies
"id": "fuj1202912102525",
"linkid": "fujifilm-biotechnologies",
"type": "Breach",
"date": "10/2025",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': '1,709 (1,675 in Texas; 34 in '
'Massachusetts)',
'industry': 'Biotechnology/Healthcare',
'name': 'Fujifilm Biotechnologies',
'type': 'Corporation'}],
'customer_advisories': 'Affected employees advised to monitor financial '
'accounts, enroll in protection services, and consider '
'credit freezes.',
'data_breach': {'data_exfiltration': 'Yes (evidenced by exposure of data)',
'number_of_records_exposed': '1,709',
'personally_identifiable_information': ['Names',
'Addresses',
'Social Security '
'numbers',
'Driver’s license '
'numbers',
'Government-issued ID '
'numbers '
'(passport/state ID)',
'Health insurance '
'information',
'Dates of birth'],
'sensitivity_of_data': 'High (includes SSNs, driver’s license '
'numbers, health insurance info, dates '
'of birth)',
'type_of_data_compromised': ['PII', 'PHI']},
'date_publicly_disclosed': '2025-10-23',
'description': 'Fujifilm Biotechnologies reported a data breach exposing '
'sensitive personally identifiable information (PII) and '
'protected health information (PHI) of current and former '
'employees. The breach was disclosed to state attorneys '
'general in October 2025, impacting at least 1,709 individuals '
'across Texas and Massachusetts. Exposed data includes names, '
'addresses, Social Security numbers, driver’s license numbers, '
'government-issued ID numbers, health insurance details, and '
'dates of birth—information highly valuable to identity '
'thieves. The company is offering 24 months of complimentary '
'credit monitoring, identity theft protection, and up to $1M '
'in insurance to affected individuals.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'exposure of sensitive employee data',
'data_compromised': ['PII (Personally Identifiable Information)',
'PHI (Protected Health Information)'],
'identity_theft_risk': 'High (combination of PII and PHI exposed)'},
'initial_access_broker': {'high_value_targets': ['Employee PII/PHI']},
'post_incident_analysis': {'corrective_actions': ['Provision of 24-month '
'credit monitoring',
'Identity theft protection '
'services',
'Dark web monitoring for '
'exposed data']},
'recommendations': ['Affected individuals should enroll in the provided '
'credit monitoring services by the specified deadline.',
'Place a credit freeze with major bureaus for additional '
'security.',
'Regularly review account statements and credit reports '
'for suspicious activity.',
'Utilize the offered identity theft protection tools '
'(e.g., dark web monitoring, SSN alerts).'],
'references': [{'date_accessed': '2025-10-23',
'source': 'Massachusetts Attorney General Office Filing'},
{'date_accessed': '2025-10-24',
'source': 'Texas Attorney General Office Filing'},
{'source': 'Fujifilm Biotechnologies Customer Advisory (via '
'Privacy Solutions ID)'}],
'regulatory_compliance': {'regulatory_notifications': ['Massachusetts '
'Attorney General '
'(disclosed '
'2025-10-23)',
'Texas Attorney '
'General (disclosed '
'2025-10-24)']},
'response': {'communication_strategy': 'Direct mail notifications with '
'enrollment instructions for credit '
'monitoring services',
'incident_response_plan_activated': 'Yes (notification and '
'support services initiated)',
'remediation_measures': ['Notification letters to affected '
'individuals',
'24 months of complimentary credit '
'monitoring',
'Identity theft protection services '
'(e.g., dark web monitoring, SSN '
'monitoring, credit freezes)',
'$1M identity theft insurance'],
'third_party_assistance': 'Epiq’s Privacy Solutions ID (for '
'credit monitoring and identity '
'protection)'},
'stakeholder_advisories': 'Notifications sent to affected individuals via '
'mail with enrollment codes for credit monitoring.',
'title': "Fujifilm Biotechnologies Data Breach Affecting Employees' PII and "
'PHI',
'type': ['Data Breach', 'Identity Theft Risk']}