Ericsson US Subsidiary Discloses Data Breach Following Third-Party Provider Hack
Learn More
Ericsson Inc., the U.S. subsidiary of the Swedish telecommunications giant Ericsson, reports a data breach resulting from a cyberattack on one of its third-party service providers.
Attackers gained access to the service provider's network between April 17 and April 22, 2025. The provider discovered the suspicious activity on April 28, 2025, and launched a forensic investigation with external cybersecurity specialists and the FBI. The investigation, concluded on February 23, 2026 and confirmed that a subset of files containing personal information was stolen during the breach.
The compromised data includes:
- Full names and home addresses
- Social Security numbers
- Driver’s License and government-issued ID numbers (passports, state IDs)
- Financial information (account, credit, and debit card numbers)
- Medical information
- Dates of birth
The number of affected individuals includes 4,377 residents in Texas, but the total nationwide count is not disclosed. The service provider name is not disclosed.
Ericsson is offering affected individuals complimentary identity protection services, which include credit and dark web monitoring and a $1 million fraud loss reimbursement policy. Impacted parties must enroll in these services by June 9, 2026, to receive coverage.
