Express Services reports data breach exposing SSNs

On September 13, 2024, Express Services, Inc. ("Express") reported a data breach after discovering that two company email accounts had been accessed by an unauthorized party.

Express Services, Inc., a temporary employment and staffing company headquartered in Oklahoma City, Oklahoma, operates hundreds of franchises in the U.S. and globally, placing approximately 500,000 people annually.

The breach was first detected on June 21, 2024, when Express Services noticed suspicious activity within its email system. Express Services launched an investigation, which confirmed the unauthorized access and the exposure of sensitive data.

This breach allowed the unauthorized actor to copy sensitive consumer information from emails and attachments within these accounts. The compromised data includes:

• Names,
• Social Security numbers,
• Driver's license numbers,
• Financial information,
• Medical information,
• Health insurance information.

The number of affected individuals is not disclosed.

On September 13, 2024, the company began notifying all individuals affected by the breach, detailing which specific information was compromised.