AmpUp Data Breach Affects Subscriber Privacy
By Join The Case · Published December 23, 2025 · Updated December 23, 2025 · 6 min read
File Your Claim Now

Dapeer Law, P.A., a top-rated class action law firm, is investigating the AmpUp data breach. If you received notice that your information was exposed during this breach, you may be entitled to compensation. It's free to join our investigation to see if we can help you recover.

See Featured Articles
Petco Data Breach Affects Subscriber Privacy Petco Data Breach Affects Subscriber Privacy Were you hired to help train AI models? Were you hired to help train AI models? Received a Parking Ticket Notice in the Mail from Parking Revenue Recovery Services? Received a Parking Ticket Notice in the Mail from Parking Revenue Recovery Services? The Washington Post Data Breach: SSNs Exposed The Washington Post Data Breach: SSNs Exposed Late-Night and Early-Morning Unwanted Text Messages Late-Night and Early-Morning Unwanted Text Messages

AmpUp Data Breach Lawsuit Investigation

EV-charging software company AmpUp recently disclosed a security incident involving its Stripe payment platform. If you received a breach notification dated December 22, 2025, you may have legal rights and deadlines to protect. Contact a qualified data-breach attorney today to explore compensation options.

Key Takeaways

  • Breach date: October 25, 2025
  • Discovery date: November 17, 2025
  • System impacted: Stripe online payment platform via compromised API key
  • Data involved: Customer full names
  • Official notice issued: December 22, 2025 (Maine filing)
Download Official Breach Notice (PDF)

What Happened?

AmpUp, Inc. (“AmpUp”) reported that an unauthorized actor used the company’s Stripe API key on October 25, 2025 to initiate fraudulent financial transactions. The company’s internal monitoring flagged the activity the same day, prompting immediate reversal of those transactions and password rotations.

After working with external cybersecurity professionals, AmpUp confirmed on November 17, 2025 that personal data tied to user Stripe accounts may have been accessed or misused.

Timeline of Events

  • October 25, 2025: Unauthorized access and fraudulent transactions occur.
  • Same day: AmpUp reverses transactions, rotates passwords, and adds extra access controls.
  • November 17, 2025: Forensic investigation determines potential data compromise.
  • December 22, 2025: Breach notice filed with the Maine Attorney General and letters mailed to affected individuals.

What Information Was Involved?

The notice states that full names associated with customer Stripe accounts were potentially exposed. AmpUp clarified that it does not store financial account numbers on its own systems.

How AmpUp Responded

According to the filing, AmpUp:

  • Reversed the fraudulent Stripe transactions immediately.
  • Rotated all passwords and implemented additional access controls.
  • Engaged external cybersecurity specialists to conduct an extensive forensic review.
  • Notified affected customers and relevant regulators out of an abundance of caution.

Steps You Can Take Now

Even if your financial details were not held by AmpUp, identity thieves could still try to exploit exposed personal data. The breach notice recommends:

  • Placing a fraud alert or security freeze with the credit bureaus.
  • Obtaining a free annual credit report and reviewing it for unfamiliar accounts.
  • Monitoring bank and card statements regularly for irregular charges.
  • Preserving any evidence of unauthorized activity in case you pursue a claim.

Potential Legal Options

Companies that fail to adequately secure personal data may be liable for resulting damages. Impacted AmpUp customers may seek compensation for:

  • Out-of-pocket fraud losses
  • Credit-monitoring or identity-theft protection costs
  • Time spent restoring accounts and credit
  • Any emotional distress caused by the breach

Consulting with experienced counsel can clarify eligibility and filing deadlines.

Company Overview: AmpUp

  • Website: ampup.io
  • Headquarters: 1700 Wyatt Drive Suite 8, Santa Clara, CA, United States
  • Industry: Electric Vehicle Charging Solutions
  • Founded: 2018
  • Employees: Between 20 – 100
  • Social: LinkedIn, X/Twitter, Facebook

Frequently Asked Questions

I received a data breach letter from AmpUp — what should I do?
Follow the letter’s fraud-prevention guidance, watch your financial accounts closely, and keep the notice in a safe place. If you observe suspicious activity, act quickly and document your losses.
How do I submit a claim related to the AmpUp data breach?
Gather your notice letter, proof of expenses, and any evidence of fraud. Then consult a data-breach attorney to explore reimbursement or class-action options.
Am I eligible to join a lawsuit against AmpUp?
If your name was exposed and you sustained financial or other damages, you may qualify. Legal counsel can confirm your status after reviewing your situation.
What information did the AmpUp breach expose?
The company reports that customer full names connected to impacted Stripe accounts were at risk.
Did AmpUp offer credit monitoring, and for how long?
The filing does not mention a specific credit-monitoring service; it only advises placing fraud alerts and security freezes.
How many people were affected by the AmpUp breach?
The Maine Attorney General filing did not include a total number of impacted individuals.
How can I get the official breach notice (PDF) for AmpUp?
You can download it directly from the Maine Attorney General website using the link above.
Attorney Advertising. Prior results do not guarantee a similar outcome.

File Your Claim Now

Meet Our Team

The dedicated professionals committed to helping you understand your legal rights.

Rachel Dapeer

Rachel Dapeer

Founding Partner at Dapeer Law

Learn More
Edgar Cruz

Edgar Cruz

Attorney at Dapeer Law

Learn More
View Full Team Page