Smart ERP Solutions Data Breach Affects 78,713 Americans

On February 11, 2025, Smart ERP Solutions, Inc. disclosed a significant data breach affecting approximately 78,713 individuals across the United States. The breach itself occurred on two separate occasions—July 3, 2024, and July 13, 2024. The incident involved unauthorized access to sensitive personal information, including individuals' names and Social Security numbers.

The breach was identified as a ransomware attack perpetrated by a hacking group known as RansomHub. On August 26, 2024, the attackers publicly claimed responsibility for the breach on a dark web portal hosted on the Tor network. In their post, RansomHub indicated they had gained access to Smart ERP Solutions' internal data and threatened to publish it within one day. The hackers provided sample screenshots as proof of their unauthorized access, demonstrating the severity of the breach.

The specific information exposed during this breach included:

• Names of individuals
• Social Security numbers

Smart ERP Solutions formally notified affected individuals of the breach on March 11, 2025, by sending written notices via U.S. Mail. Additionally, the company reported the incident to several state authorities, including the California Attorney General on March 13, 2025, the Texas Attorney General on March 13, 2025, the Vermont Attorney General on March 12, 2025, and the Maine Attorney General on March 16, 2025. Among the states, Texas had the highest number of affected individuals, totaling 16,696, while Maine reported 24 affected individuals.

Smart ERP Solutions, Inc.'s response

Following discovery of the breach, Smart ERP Solutions promptly initiated an internal investigation to determine the scope and extent of the unauthorized access. The company engaged cybersecurity experts to help contain the incident, secure its systems, and prevent further unauthorized access.

Given the sensitive nature of the information exposed—particularly Social Security numbers—affected individuals are strongly advised to take immediate steps to protect their identity and financial accounts. Recommended actions include placing a fraud alert or credit freeze on credit reports, closely monitoring financial statements, and reporting any suspicious activity to financial institutions and authorities promptly.

Smart ERP Solutions has provided affected individuals with guidance on identity theft protection and credit monitoring services. Individuals who received notification letters should carefully review the instructions provided by the company and take advantage of any offered resources.