Sellmark Corp. suffered a significant data breach where an unauthorized actor infiltrated its internal network between March 10, 2025, and April 14, 2025, exfiltrating files containing personally identifiable information (PII). The compromised data included names, Social Security numbers, driver’s license/government ID numbers, and financial account details. While the exact number of affected individuals remains undisclosed, initial reports suggest thousands were impacted, with confirmed cases including 1,205 in Texas, four in New Hampshire, and one in Maine.The breach was formally reported to state Attorney Generals' offices on September 11, 2025, and affected individuals were notified via mail. Sellmark responded by securing its systems, involving law enforcement, and offering 12 months of free Experian IdentityWorks identity monitoring to victims. A dedicated helpline was also established to address concerns. The exposure of highly sensitive financial and identity-related data poses severe risks, including identity theft, fraud, and phishing attacks targeting the victims.
Source: https://www.claimdepot.com/data-breach/sellmark-corporation-2025
TPRM report: https://www.rankiteo.com/company/sellmark-corporation
"id": "sel5802958091325",
"linkid": "sellmark-corporation",
"type": "Breach",
"date": "3/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Thousands (confirmed: 1,210 '
'across Texas, New Hampshire, '
'and Maine)',
'name': 'Sellmark Corp.',
'type': 'Corporation'}],
'customer_advisories': ['Mail notifications to affected individuals',
'Dedicated helpline (877-396-3268, Mon-Fri 8am-8pm '
'CT)',
'Recommendations for identity protection (fraud '
'alerts, credit freezes)'],
'data_breach': {'data_exfiltration': True,
'number_of_records_exposed': 'Thousands (exact number '
'undisclosed; confirmed: 1,210 '
'in TX, NH, ME)',
'personally_identifiable_information': ['Names',
'Social Security '
'numbers',
"Driver's license "
'numbers',
'Government ID '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Financial account information']},
'date_detected': '2025-04-14',
'date_publicly_disclosed': '2025-09-11',
'description': 'Sellmark Corp. experienced a major data breach where an '
'unauthorized actor accessed its internal network between '
'March 10, 2025, and April 14, 2025, obtaining files '
'containing sensitive personally identifiable information '
'(PII). The compromised data included names, Social Security '
"numbers, driver's license or government ID numbers, and "
'financial account information. The breach affected thousands '
'of individuals, with confirmed cases in Texas (1,205), New '
'Hampshire (4), and Maine (1). Sellmark reported the incident '
'to regulatory authorities and offered affected individuals 12 '
'months of free identity monitoring services.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'exposure of sensitive PII',
'data_compromised': ['Names',
'Social Security numbers',
"Driver's license numbers",
'Government ID numbers',
'Financial account information'],
'identity_theft_risk': 'High (PII exposed)',
'legal_liabilities': 'Regulatory notifications to New Hampshire, '
"Texas, and Maine Attorney Generals' offices",
'payment_information_risk': 'High (financial account information '
'exposed)',
'systems_affected': ['Internal network']},
'initial_access_broker': {'high_value_targets': ['PII and financial account '
'data'],
'reconnaissance_period': 'Potential activity '
'between March 10, 2025, '
'and April 14, 2025'},
'investigation_status': 'Completed (review concluded by Aug. 14, 2025)',
'post_incident_analysis': {'corrective_actions': ['Secured systems',
'Offered identity '
'monitoring to affected '
'individuals']},
'ransomware': {'data_exfiltration': True},
'recommendations': ['Sign up for free identity monitoring services (Experian '
'IdentityWorks).',
'Monitor credit reports and financial accounts for '
'unusual activity.',
'Be alert for phishing attempts using exposed PII.',
'Consider placing a fraud alert or credit freeze with '
'major credit bureaus.'],
'references': [{'source': 'Sellmark Corporation Breach Notice'},
{'source': 'Sellmark Website'}],
'regulatory_compliance': {'regulatory_notifications': ['New Hampshire '
"Attorney General's "
'office',
'Texas Attorney '
"General's office",
'Maine Attorney '
"General's office"]},
'response': {'communication_strategy': ['Notified affected individuals via '
'mail',
'Set up a dedicated helpline '
'(877-396-3268)',
'Public disclosure to regulatory '
'authorities'],
'containment_measures': ['Secured internal systems'],
'incident_response_plan_activated': True,
'law_enforcement_notified': True,
'recovery_measures': ['Offered 12 months of free identity '
'monitoring to affected individuals'],
'third_party_assistance': ['Experian IdentityWorks (identity '
'monitoring services)']},
'threat_actor': 'Unauthorized actor',
'title': 'Sellmark Corp. Data Breach (2025)',
'type': 'Data Breach'}