Wear Howell Strickland Quinn & Law Data Breach Lawsuit

Wear Howell Strickland Quinn & Law, CPAs (“Wear Howell”), a professional accounting firm, has reported a cybersecurity incident that may have exposed the personal information of certain individuals. The breach, discovered in February 2025, affected the firm’s network systems and resulted in unauthorized access to sensitive data, including Social Security numbers.

Wear Howell Strickland Quinn & Law’s Data Breach Investigation

On February 24, 2025, Wear Howell experienced a significant IT outage that disrupted access to several local systems. Upon identifying the issue, the firm immediately launched an investigation with the assistance of external cybersecurity experts. Their investigation revealed that an unauthorized actor had accessed Wear Howell’s network between February 11 and February 19, 2025, potentially acquiring files containing personal information.

After securing the affected systems, Wear Howell engaged additional forensic specialists to perform an in-depth analysis to determine which files were compromised and which individuals were affected. On or about September 3, 2025, the review concluded that certain files contained personal data, including names and Social Security numbers, belonging to at least ten New Hampshire residents.

In response, Wear Howell promptly notified federal law enforcement and has been cooperating fully with the ongoing investigation. The firm also enhanced its cybersecurity posture by implementing stronger firewalls, network segmentation, and employee awareness training to mitigate the risk of similar future incidents.

To help affected individuals, Wear Howell has partnered with IDX, a data breach and recovery services provider, to offer 12 months of complimentary identity protection. These services include credit and CyberScan monitoring, a $1 million identity theft insurance reimbursement policy, and fully managed identity theft recovery services. Additionally, IDX will maintain a dedicated call center for at least 90 days to answer questions from impacted individuals.

When Did This Breach Occur?

The unauthorized access occurred between February 11 and February 19, 2025, with the breach being detected and contained on February 24, 2025. Wear Howell completed its investigation on September 3, 2025, and began notifying affected individuals via U.S. mail on October 6, 2025.

What Information Was Breached?

The personal data potentially exposed in the Wear Howell data breach includes:

• Name
• Social Security number

While the firm has no evidence suggesting the misuse of the compromised data, the type of information exposed presents a serious risk for identity theft and financial fraud.

What You Can Do

If you received a notification from Wear Howell, it is essential to take immediate action to protect yourself:

1. Enroll in Free Identity Protection Services – Wear Howell is offering 12 months of complimentary identity protection through IDX, which includes credit and dark web monitoring, a $1,000,000 insurance policy, and identity theft recovery assistance.
2. Review Financial and Credit Accounts – Regularly check your financial accounts and credit reports for unfamiliar transactions or new account openings.
3. Place a Fraud Alert or Credit Freeze – Contact Equifax, Experian, and TransUnion to place a fraud alert or freeze on your credit to prevent unauthorized activity.
4. Change Passwords and Enable Multi-Factor Authentication – Strengthen your account security, especially for email and banking logins.
5. Report Suspicious Activity – Immediately report any suspected identity theft or fraud to your financial institutions and the Federal Trade Commission (FTC).

Remaining proactive and enrolling in the free monitoring services offered by Wear Howell can significantly reduce your exposure to identity-related risks.

File a Data Breach Lawsuit Against Wear Howell