Martin Sprocket Data Breach Affects Thousands Nationwide

Martin Sprocket & Gear, Inc., recently experienced a significant data breach. On July 29, 2024, an unauthorized individual gained access to one of the company’s servers containing sensitive employee data.

The breach was discovered on August 22, 2024, and an investigation was immediately launched with the assistance of a third-party forensic provider.

It wasn’t until November 19, 2024, that the company confirmed the extent of the breach and the specific types of information compromised. The breach affected individuals across multiple states, with 6,875 people impacted in Texas and 36 in Massachusetts, as reported to the respective Attorney General offices.

The exposed information includes highly sensitive personal and financial data, which varies by individual.

The compromised data includes:

• First and last names
• Addresses
• Social Security numbers
• Driver’s license numbers
• Financial account and payment card information
• Medical information
• Health insurance details
• Dates of birth

The breach was disclosed to the California Attorney General's office on December 11, 2024, the Massachusetts Attorney General's office on December 12, 2024, and the Texas Attorney General's office on December 13, 2024.

The breach is considered severe due to the nature of the information exposed, which could potentially be used for identity theft, financial fraud, and unauthorized access to health records. The method of the breach—unauthorized access to a server—highlights vulnerabilities in the company’s cybersecurity infrastructure.

Martin Sprocket & Gear's response

In response to the breach, Martin Sprocket & Gear took action to mitigate the damage and prevent future incidents. After discovering the breach, the company engaged a reputable third-party forensic firm to investigate the scope of the unauthorized access.

They also notified law enforcement and are cooperating with the ongoing investigation.

To support affected individuals, Martin Sprocket & Gear is offering identity theft protection services through IDX, a data breach and recovery services provider.

These services include:

• 12 months of credit and CyberScan monitoring
• $1,000,000 insurance reimbursement policy
• Fully managed identity theft recovery services

Affected individuals can enroll in these services by visiting IDX's enrollment page or contacting IDX at 1-877-719-6297. The enrollment deadline is March 16, 2025.

The company has also implemented additional security measures to strengthen its systems and reduce the likelihood of similar incidents in the future.

Steps to take if you are affected

If you believe you may have been affected by this data breach, it is important to act quickly to protect yourself.

Here are the steps you should take:

1. Enroll in identity theft protection services: Take advantage of the free services offered by Martin Sprocket & Gear through IDX. Visit IDX's enrollment page or call 1-877-719-6297 to sign up before the March 16, 2025, deadline.
2. Monitor your credit reports and financial accounts: Regularly review your credit reports for suspicious activity. You are entitled to one free credit report annually from each of the three major credit bureaus at AnnualCreditReport.com.
3. Place a fraud alert on your credit file: Contact one of the three major credit bureaus—Equifax, Experian, or TransUnion—to place a fraud alert. This will notify creditors to take extra steps to verify your identity before opening new accounts.
4. Consider a credit freeze: A credit freeze prevents new accounts from being opened in your name. Contact each credit bureau individually to request a freeze.
5. Be vigilant for phishing scams: Be cautious of unsolicited emails or phone calls requesting personal information. Scammers may use information from the breach to target affected individuals.
6. Report suspicious activity: If you notice unauthorized transactions or suspect identity theft, report it immediately to your financial institution and file a complaint with the Federal Trade Commission.