MGO Suffers Ransomware Attack, Exposing Sensitive Personal and Health Data
In February 2025, accounting and advisory firm MGO disclosed a ransomware attack that compromised sensitive personal and protected health information. The breach, detected on February 19, 2025, prompted an internal investigation to assess the scope of the incident.
MGO confirmed that an unauthorized third party accessed its network, potentially exposing a range of personal data. Affected information includes names, Social Security numbers, driver’s licenses, dates of birth, medical diagnoses, health insurance details, financial account numbers, payment card numbers, and tax identification numbers. The exact data exposed varies by individual.
On March 16, 2026, MGO began notifying impacted individuals via mail, detailing the specific types of compromised information and offering complimentary credit monitoring services. The breach notice was published on MGO’s website, outlining the incident’s timeline and response efforts. The full extent of the breach’s impact remains under review.
Source: https://straussborrelli.com/2026/03/18/mosley-glick-obrien-data-breach-investigation/
MGO (Macias Gini & O'Connell LLP) cybersecurity rating report: https://www.rankiteo.com/company/macias-gini-&-o'connell-llp-mgo-
"id": "MAC1773852842",
"linkid": "macias-gini-&-o'connell-llp-mgo-",
"type": "Ransomware",
"date": "2/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Professional Services',
'name': 'MGO',
'type': 'Accounting and Advisory Firm'}],
'customer_advisories': 'Complimentary credit monitoring services offered to '
'impacted individuals',
'data_breach': {'personally_identifiable_information': ['Names',
'Social Security '
'numbers',
'Driver’s licenses',
'Dates of birth',
'Medical diagnoses',
'Health insurance '
'details',
'Tax identification '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Identifiable '
'Information',
'Protected Health Information',
'Financial Information']},
'date_detected': '2025-02-19',
'date_publicly_disclosed': '2025-02',
'description': 'In February 2025, accounting and advisory firm MGO disclosed '
'a ransomware attack that compromised sensitive personal and '
'protected health information. The breach, detected on '
'February 19, 2025, prompted an internal investigation to '
'assess the scope of the incident. MGO confirmed that an '
'unauthorized third party accessed its network, potentially '
'exposing a range of personal data. Affected information '
'includes names, Social Security numbers, driver’s licenses, '
'dates of birth, medical diagnoses, health insurance details, '
'financial account numbers, payment card numbers, and tax '
'identification numbers. The exact data exposed varies by '
'individual. On March 16, 2026, MGO began notifying impacted '
'individuals via mail, detailing the specific types of '
'compromised information and offering complimentary credit '
'monitoring services.',
'impact': {'data_compromised': 'Sensitive personal and protected health '
'information',
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'investigation_status': 'Under review',
'ransomware': {'data_exfiltration': 'Potential'},
'references': [{'source': 'MGO Breach Notice'}],
'response': {'communication_strategy': 'Notified impacted individuals via '
'mail on March 16, 2026; published '
'breach notice on website'},
'title': 'MGO Suffers Ransomware Attack, Exposing Sensitive Personal and '
'Health Data',
'type': 'Ransomware'}