IES Communications Data Breach Lawsuit Investigation
Just received a breach notice from IES Communications? A massive ransomware attack exposed 1,000 GB of sensitive employee data—putting thousands at risk of identity theft. Find out how to protect yourself and learn if you can file a claim.
Download Notice (PDF)At a Glance
- Breach type: Ransomware (claimed by “CHAOS” group)
- Date of intrusion: March 17 2025
- Data size: 1,000 GB
- Individuals affected: 6,241 (1,061 in Texas, 1 in Maine)
- Notification mailed: July 3 2025
- Free services: 24 months of Experian IdentityWorks
What Happened?
On March 17 2025, threat actors infiltrated IES Communications’ network, disrupting IT operations and siphoning roughly one terabyte of company data. The ransomware collective known as CHAOS later boasted about the theft on the Tor network.
An internal investigation concluded on June 6 2025 that personal data of current and former employees had been accessed. IES then filed breach disclosures with the Maine and Texas Attorneys General in early July and began mailing notification letters on July 3 2025.
What Information Was Exposed?
The compromised files included a broad range of personally identifiable information (PII) and payroll details:
- Full names
- Social Security numbers
- Dates of birth
- Home addresses
- Government-issued ID numbers
- Medical and financial information
- Certain payroll records and other HR data
Who Is Impacted?
IES Communications confirmed that at least 6,241 individuals are affected nationwide. If you were employed by or applied for work at IES Communications (or its COMM affiliate) before March 2025, there is a significant chance your data was among the stolen files.
Your Action Plan
1. Enroll in Free Identity Protection
IES is offering 24 months of Experian IdentityWorks. Enrollment details are provided in the mailed notice—act before any stated deadline.
2. Monitor Accounts & Credit Reports
- Review bank, credit-card, and retirement statements for unfamiliar transactions.
- Obtain your free annual credit reports at AnnualCreditReport.com.
- Consider placing a fraud alert or credit freeze with Experian, TransUnion, or Equifax.
3. Watch for Phishing Scams
Attackers may use your leaked information to craft convincing emails, texts, or calls. Never click suspicious links or share additional data.
4. Preserve Evidence of Losses
Keep copies of any fraudulent charges, time spent remedying identity issues, or out-of-pocket expenses. These records can strengthen a potential claim.
Can You File a Lawsuit?
U.S. data-privacy laws allow victims to pursue compensation when companies fail to adequately safeguard personal information. Potential damages may cover:
- Unreimbursed fraudulent charges or bank fees
- Credit-monitoring or identity-theft-protection costs beyond what IES offers
- Time spent resolving identity issues
- Emotional distress arising from the breach
If you received an IES Communications notice letter, you may qualify to join a class action or individual lawsuit. Legal teams are currently gathering claimant information and assessing liability.
Important Dates & Timeline
- Mar 17 2025: Ransomware attack detected.
- Jun 06 2025: Investigation confirms data access.
- Jul 01 2025: First state breach disclosure filed.
- Jul 03 2025: Notification letters begin mailing.
- Jul 08 2025: Texas AG posting made public.
- Enrollment deadline: Refer to your letter for the last day to activate free credit-monitoring services.
About IES Communications
Founded in 1984 and headquartered in Tempe, Arizona, IES Communications delivers low-voltage cabling, security, and wireless-network solutions across more than 90 U.S. locations. The company employs 1,000+ professionals and serves markets from data centers to industrial facilities.
IES Communications Data Breach FAQ
What caused the IES Communications data breach?
A ransomware attack attributed to the “CHAOS” group infiltrated IES systems on March 17 2025, exfiltrating roughly 1,000 GB of data.
How do I know if my information was involved?
IES mailed letters starting July 3 2025 to all individuals whose data was confirmed or suspected to be accessed. If you moved recently, contact the company’s HR department to verify your status.
What free services is IES providing?
Affected people receive two years of Experian IdentityWorks, which includes credit-monitoring, dark-web surveillance, and $1 million in identity-theft insurance.
Can I still join a lawsuit against IES Communications?
Yes. Claim investigations are ongoing. You typically must prove you received a breach notice or that your data was stored by IES. Deadlines vary by jurisdiction.
Will accepting free credit monitoring waive my legal rights?
No. Enrolling in IdentityWorks does not prevent you from seeking compensation through a lawsuit.
How long will credit impacts last?
Fraudulent accounts can linger on credit reports for months if unaddressed. Continuous monitoring and prompt dispute of inaccuracies are key to minimizing long-term effects.