Ericsson Inc., the United States subsidiary of the Swedish telecommunications giant Ericsson, has disclosed a data breach after attackers gained access to sensitive information stored by one of its service providers.
The incident exposed personal data belonging to employees and customers, though the total number of affected individuals has not been publicly disclosed.
Ericsson’s parent company, headquartered in Stockholm, Sweden, is one of the world’s largest telecommunications and networking technology providers. Founded in 1876, the company employs nearly 90,000 people globally and supplies infrastructure and services used by telecom operators around the world.
According to breach notification letters sent to affected individuals and filed with the California Attorney General, the intrusion was first discovered on April 28, 2025. The compromised service provider was responsible for storing certain personal data for Ericsson employees and customers.
After detecting the breach, the service provider alerted the FBI and hired external cybersecurity specialists to investigate the incident and determine how far the intrusion had spread. Investigators later determined that unauthorized access likely occurred between April 17 and April 22, 2025.
During that time, attackers may have accessed or copied a limited set of files containing sensitive personal information. A detailed review of the compromised data was completed on February 23, 2026 by external data specialists.
The analysis confirmed that some personal information belonging to Ericsson-related individuals was included in the affected files. Although the investigation confirmed data exposure, Ericsson said there is currently no evidence that the stolen information has been misused.
A separate filing with the Texas Attorney General revealed that at least 4,377 individuals in Texas alone were impacted by the breach. The exposed information may include highly sensitive details such as names, home addresses, Social Security numbers, driver’s license numbers, passport or other government identification numbers, financial account details, credit or debit card numbers, medical information, and dates of birth.
To help protect affected individuals, Ericsson is offering free identity protection services through IDX. These services include credit monitoring, dark web monitoring, identity theft recovery support, and insurance coverage of up to one million dollars for identity fraud losses. Eligible individuals must enroll in the protection program by June 9, 2026.
Although Ericsson described the incident as a data theft attack, no ransomware group or cybercriminal organization has claimed responsibility for the breach so far. This has raised speculation that the attackers may have demanded a ransom that was quietly paid by the service provider or that the hackers were unable to link the stolen data specifically to Ericsson.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
When asked for further details about the breach, including the total number of affected individuals worldwide, an Ericsson spokesperson said the company had no additional information to share beyond what was included in the official notification letters.
