Class Action U Logo
Check Your Eligibility

Informa Data Breach

A third-party vulnerability in Oracle’s E-Business Suite led to unauthorized access to Informa’s systems in August 2025. The breach compromised sensitive employee data, including Social Security numbers and bank account details. Informa is offering identity protection and encouraging affected individuals to act. Legal options may be available for compensation.

Informa
Date of Breach: August 11, 2025, to August 18, 2025
CAU logo

Who was affected:

Clients of Informa

Impacted Data:

Full names

Social Security numbers

Dates of birth

Bank account information

Check Your Eligibility

Informa has disclosed a data breach stemming from a vulnerability in Oracle’s E-Business Suite software, exposing sensitive employee information between August 11–18, 2025.

Informa’s Data Breach Investigation

Informa, a global events and publishing company, recently announced a significant data breach involving one of its third-party service providers, Oracle. The incident stems from a previously unknown vulnerability in Oracle’s E-Business Suite software. This flaw allowed an unauthorized actor to gain temporary access to Informa’s internal systems.

The breach occurred specifically within Oracle systems used by Informa Exhibitions U.S. Construction and Real Estate, Inc., as well as other Informa U.S. affiliates. These systems manage invoicing operations and store sensitive employment-related information. The breach affected an undisclosed number of employees.

According to Informa’s disclosure, unauthorized access took place between August 11 and August 18, 2025—prior to the public revelation of the software vulnerability. Once the breach was identified in November, Informa immediately engaged third-party forensic experts to investigate the intrusion and secure affected systems. Law enforcement agencies were also notified.

Informa reports that impacted data includes personally identifiable information (PII) such as names, Social Security numbers, dates of birth, and bank account details. While there is no confirmed misuse of the data at this time, the nature of the information exposed makes those affected vulnerable to identity theft and financial fraud.

To mitigate potential harm, Informa is offering affected individuals 24 months of complimentary identity protection services through Experian IdentityWorksSM. This monitoring service provides support for detecting and resolving identity theft-related issues.

Despite these measures, concerns remain about the implications of the breach, especially given the sensitive nature of the exposed data. Informa’s swift response is notable, but victims of the breach may still face long-term consequences, including unauthorized use of their financial information.

When Did This Breach Occur?

The unauthorized access occurred between August 11, 2025, and August 18, 2025, before Oracle publicly disclosed the vulnerability in its E-Business Suite software. Informa discovered the breach in November 2025 and began notifying affected individuals via email on December 15, 2025.

What Information Was Breached?

  • Full names

  • Social Security numbers

  • Dates of birth

  • Bank account information

This information was collected and stored as part of employees’ records within Informa’s Oracle-based systems.

What You Can Do

If you received a breach notification from Informa, it’s essential to act swiftly:

  • Activate Identity Monitoring: Enroll in the complimentary 24-month Experian IdentityWorksSM program provided by Informa. It offers credit monitoring and identity restoration services.

  • Monitor Your Accounts: Regularly check bank accounts, credit cards, and credit reports for unauthorized activity.

  • Freeze Your Credit: Consider placing a credit freeze with the major credit bureaus to prevent new account fraud.

  • Report Suspicious Activity: File reports with the FTC or your local law enforcement if you suspect identity theft.

Knowledge is your best defense. At Class Action U, we empower consumers with the tools to fight back against data breaches and corporate negligence. If you’ve been impacted, connect with us to explore your legal options and ensure your rights are protected.

File a Data Breach Lawsuit Against Informa

If you received a notification from Informa about this breach, you may be entitled to compensation. When companies fail to protect sensitive information, affected individuals have the right to hold them accountable through legal action.

Class action lawsuits allow victims to band together to pursue justice. If your Social Security number or financial information was exposed, you could be eligible to join a lawsuit against Informa to recover damages for time, stress, and potential financial loss.

Contact us at Class Action U, where we’ll connect you with a lawyer skilled in class action lawsuits. If you’ve been contacted about this breach, received notice, or discovered you were impacted, fill out our quick, easy, and secure form to sign up. There is no cost to reach out to our legal partner and no obligation after speaking with someone from our team.

VIEW PDF
Subscribe To Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This field is for validation purposes and should be left unchanged.
Other Data Breaches
Memberclose Data Breach
Date of Breach: October 30, 2025
Furuno U.S.A Data Breach
Date of Breach: September 15, 2025
Posillico Data Breach
Date of Breach: December 8, 2025
Show More

Frequently Asked Questions

A data breach occurs when sensitive, confidential, or protected information is accessed, stolen, or disclosed without authorization. Data breaches often occur through phishing emails, malware, weak passwords, insider threats, or unsecured databases. Indicators of a data breach can include unexpected password resets, suspicious account activity, unauthorized transactions, or notifications from companies about compromised information.If you suspect your data has been compromised, you must take measures and act quickly. Change passwords, enable two-factor authentication, review your financial accounts for unusual activity and consider freezing your credit.

Once stolen, your personal information may be sold on the dark web or used for identity theft and financial fraud. In some cases, hackers use the data to extort companies or launch further attacks. Victims often face long-term risks, including damage to credit and privacy.

If you receive a data breach notification, don’t ignore it. Immediately change passwords for the affected account and any others that share credentials. Enroll in any free credit monitoring services offered and monitor financial statements closely.

To pursue a data breach claim, you’ll need documentation showing your information was compromised and proof of resulting harm, such as fraudulent charges, credit score damage, or identity theft reports. Notification letters, financial records, and communication with the breached company can help support your claim.

Yes. If a company fails to protect consumer data or delays notifying victims, it may be held liable under state and federal privacy laws. Many victims join class action lawsuits to recover financial losses and hold negligent organizations accountable.

Data breach settlements vary widely depending on the size of the breach, type of data compromised, and damages suffered by victims. Payouts may include cash compensation, identity theft protection, or reimbursement for losses. Many settlements range from a few hundred to several thousand dollars per person. A skilled data breach lawyer can guide victims through the complex legal process, ensuring their rights are protected. If you’ve received a data breach notification or believe your personal data was exposed, you may be eligible for compensation. Contact Class Action U to learn more about how to join a data breach lawsuit and understand the process of filing.