Complete Payroll Solutions discloses data breach following ransomware attack

On February 21 and March 10, 2024, Complete Payroll Solutions (CPS), a prominent provider of human capital management solutions in the Northeast, experienced a significant data breach. The incident was the result of a ransomware attack by a group known as MEOW, who claimed responsibility on the dark web and stated they had accessed 3 GB of sensitive company data. The compromised information included personally identifiable information (PII) such as names, social security numbers, financial account details, and driver’s license numbers. Additionally, the attackers claimed to have obtained confidential employee data, client information, scanned payment documents, tax documents, payment records, and other personal data.

The breach impacted thousands of individuals, with 214 affected in Massachusetts and a notably larger number, 21,963, in New Hampshire. The incident was reported to state authorities, including the Massachusetts Attorney General's office, the California Attorney General's office, the Vermont Attorney General's office, and the New Hampshire Attorney General's office. The breach was disclosed to these agencies between April 25 and April 28, 2025.

The severity of this breach is considerable due to the nature of the data accessed and the method of attack. Ransomware attacks often involve not only the theft of data but also the threat of public exposure or sale of that data if ransom demands are not met. In this case, MEOW published details of the hack on the Tor network, further increasing the risk of misuse of the stolen information.

Complete Payroll Solutions's response

Upon discovering suspicious activity on March 10, 2024, CPS immediately began an internal investigation and quickly took steps to secure its systems. The company reset system passwords, implemented additional layers of security, and notified law enforcement authorities. CPS also conducted a thorough review to determine the scope of the data affected and identify impacted individuals.

To support those affected, CPS is offering complimentary identity monitoring services through Kroll for a specified period. Impacted individuals are encouraged to take advantage of these services, which include single bureau credit monitoring, fraud consultation, and identity theft restoration. Details on how to enroll in these services are provided in the notice to consumers, which will be available in PDF format at the bottom of this page.

Given the nature of the breach, individuals should remain vigilant for signs of identity theft or fraud. It is advisable to regularly review account statements and credit reports, consider placing fraud alerts or credit freezes with major credit bureaus, and take advantage of the free credit monitoring being offered. Additional guidance and contact information for credit bureaus and relevant state agencies are included in the official notice.

About Complete Payroll Solutions

Founded in 2003, Complete Payroll Solutions is a privately-held, locally-owned provider of payroll, HR, and benefits administration services. Serving over 8,000 clients across the Northeast, CPS integrates payroll, human resources, and insurance solutions under one roof. With more than 175 employees across six locations, the company focuses on delivering customized, enterprise-level functionality to help clients manage their workforce and regulatory requirements efficiently.