Retail Merchandising Services: Retail Merchandising Services Data Breach Claims Investigated by Lynch Carpenter

RMS Data Breach Exposes Personal Information of Over 16,000 Individuals

On March 20, 2026, Retail Merchandising Services (RMS), a Pittsburgh-based company specializing in retail inventory management, disclosed a cybersecurity incident that compromised the personal data of more than 16,000 individuals. The breach involved unauthorized access to RMS’s network, potentially exposing sensitive personally identifiable information (PII), including names paired with Social Security numbers, dates of birth, account numbers, and routing numbers.

Lynch Carpenter, LLP, a national class action law firm, has launched an investigation into the incident, inviting affected individuals to seek legal review. The firm, which has handled data privacy cases for over a decade, is examining potential claims related to the breach.

RMS has not yet provided further details on the timeline of the attack or the methods used by the unauthorized actor. The incident adds to a growing list of retail sector breaches, underscoring persistent vulnerabilities in third-party service providers handling sensitive consumer data.

Source: https://www.globenewswire.com/news-release/2026/03/20/3259883/0/en/Retail-Merchandising-Services-Data-Breach-Claims-Investigated-by-Lynch-Carpenter.html

Retail Merchandising Services, Inc. cybersecurity rating report: https://www.rankiteo.com/company/retail-merchandising-services

"id": "RET1774103057",
"linkid": "retail-merchandising-services",
"type": "Breach",
"date": "3/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': '16000',
                        'industry': 'Retail Inventory Management',
                        'location': 'Pittsburgh',
                        'name': 'Retail Merchandising Services (RMS)',
                        'type': 'Company'}],
 'attack_vector': 'Unauthorized Access',
 'data_breach': {'number_of_records_exposed': '16000',
                 'personally_identifiable_information': ['Names',
                                                         'Social Security '
                                                         'numbers',
                                                         'Dates of birth',
                                                         'Account numbers',
                                                         'Routing numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Personally Identifiable '
                                             'Information (PII)'},
 'date_publicly_disclosed': '2026-03-20',
 'description': 'Retail Merchandising Services (RMS), a Pittsburgh-based '
                'company specializing in retail inventory management, '
                'disclosed a cybersecurity incident that compromised the '
                'personal data of more than 16,000 individuals. The breach '
                'involved unauthorized access to RMS’s network, potentially '
                'exposing sensitive personally identifiable information (PII), '
                'including names paired with Social Security numbers, dates of '
                'birth, account numbers, and routing numbers.',
 'impact': {'data_compromised': 'Personally Identifiable Information (PII)',
            'identity_theft_risk': 'High',
            'legal_liabilities': 'Potential class action investigation',
            'payment_information_risk': 'High',
            'systems_affected': 'RMS’s network'},
 'investigation_status': 'Ongoing',
 'references': [{'source': 'Lynch Carpenter, LLP'}],
 'regulatory_compliance': {'legal_actions': 'Class action investigation'},
 'title': 'RMS Data Breach Exposes Personal Information of Over 16,000 '
          'Individuals',
 'type': 'Data Breach'}