Hiller Companies, a major U.S. provider of fire protection services, suffered a malicious encryption attack (ransomware) in December 2024, discovered in June 2025. Unauthorized actors copied sensitive files from the company’s network, exposing personally identifiable information (PII) of at least 123 individuals in Massachusetts, with potential broader impact. Compromised data includes names, Social Security numbers, driver’s license numbers, passport details, financial/health records, and government-issued IDs. The breach triggered regulatory notifications to state attorneys general in August 2025. Affected individuals face risks of identity theft, financial fraud, and medical data misuse, with Hiller offering 24 months of credit monitoring via Cyberscout. Legal investigations by Shamis & Gentile P.A. are underway, as victims may pursue compensation claims for damages under state/federal laws. The incident underscores critical vulnerabilities in handling highly sensitive customer and employee data within industrial service sectors.
Source: https://www.claimdepot.com/investigations/hiller-companies-data-breach-2025
TPRM report: https://www.rankiteo.com/company/hiller-systems-inc
"id": "hil909090225",
"linkid": "hiller-systems-inc",
"type": "Ransomware",
"date": "12/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': '123+ (minimum 123 in '
'Massachusetts, additional '
'victims possible in other '
'states)',
'industry': 'fire protection products and services',
'location': {'headquarters': 'Mobile, Alabama, USA',
'offices': ['Alabama',
'Texas',
'Florida',
'Massachusetts']},
'name': 'LP Falcon Holdings Inc (Hiller Companies)',
'type': 'private company'}],
'attack_vector': ['malicious encryption attack', 'data exfiltration'],
'customer_advisories': ['Notified affected individuals via breach '
'notification',
'Offered 24 months of complimentary identity '
'protection (Cyberscout)',
'Provided guidance on credit freezes, fraud alerts, '
'and monitoring'],
'data_breach': {'data_encryption': True,
'data_exfiltration': True,
'number_of_records_exposed': '123+ (minimum confirmed in '
'Massachusetts)',
'personally_identifiable_information': True,
'sensitivity_of_data': 'high (includes SSN, financial, '
'medical, and government-issued IDs)',
'type_of_data_compromised': ['personally identifiable '
'information (PII)',
'financial data',
'health information']},
'date_detected': '2025-06-13',
'date_publicly_disclosed': '2025-08-01',
'description': 'Shamis & Gentile P.A. is investigating a data breach at LP '
'Falcon Holdings Inc (Hiller Companies), a major provider of '
'fire protection products and services. The breach involved a '
'malicious encryption attack by unknown actors, leading to '
'unauthorized copying of sensitive personally identifiable '
"information (PII) from the company's network. The incident "
'was detected on June 13, 2025, but the unauthorized access '
'occurred on or about December 17, 2024. At least 123 '
'individuals in Massachusetts were affected, with potential '
'additional victims in other states. The exposed data includes '
"names, Social Security numbers, driver's license numbers, "
'government-issued IDs, passport numbers, financial account '
'details, payment card numbers, medical information, and '
'health insurance data.',
'impact': {'brand_reputation_impact': 'potential damage (under investigation)',
'data_compromised': ['name',
'Social Security number',
"driver's license number",
'unique government-issued identification '
'number',
'passport number',
'financial account information',
'payment card number',
'medical information',
'health insurance information'],
'identity_theft_risk': 'high (PII exposed)',
'legal_liabilities': 'potential (class action lawsuit initiated)',
'payment_information_risk': 'high (financial account and payment '
'card data exposed)'},
'investigation_status': 'ongoing (class action lawsuit investigation in '
'progress)',
'ransomware': {'data_encryption': True, 'data_exfiltration': True},
'recommendations': ['Place a security freeze on credit reports',
'Add a fraud alert to credit reports',
'Monitor financial accounts and credit reports for '
'suspicious activity',
'Report unusual activity to financial institutions and '
'law enforcement',
'Utilize offered identity protection services '
'(Cyberscout, 24 months)'],
'references': [{'source': 'Shamis & Gentile P.A. (class action investigation '
'page)'}],
'regulatory_compliance': {'legal_actions': ['class action lawsuit '
'investigation by Shamis & '
'Gentile P.A.'],
'regulatory_notifications': ['multiple state '
'attorney general '
'offices (reported in '
'August 2025)']},
'response': {'communication_strategy': ['notifications to affected '
'individuals',
'reporting to state attorney general '
'offices'],
'incident_response_plan_activated': True,
'recovery_measures': ['offered 24 months of complimentary '
'identity protection services (via '
'Cyberscout)'],
'third_party_assistance': ['cybersecurity experts '
'(unspecified)']},
'threat_actor': 'unknown',
'title': 'LP Falcon Holdings Inc (Hiller Companies) Data Breach',
'type': ['data breach', 'ransomware', 'unauthorized access']}