Managed Care Advisors/Sedgwick Government Solutions (MCA/SGS), a federal government contractor providing workers’ compensation and managed care solutions, recently disclosed a data breach affecting the personal information of New Hampshire residents. The breach, which involved unauthorized access to a Secure File Transfer Protocol (SFTP) server, exposed sensitive data for a limited number of individuals. MCA/SGS has since taken steps to secure its systems and offer resources to those impacted by the breach.
MCA/SGS Data Breach Investigation
On December 4, 2025, MCA/SGS discovered that files on their corporate SFTP server had been unexpectedly encrypted due to unauthorized third-party access. The investigation revealed that the server had been compromised on November 16, 2025, by an unauthorized individual or group.
Upon discovering the breach, MCA/SGS immediately initiated its incident response process. The affected SFTP server was quarantined, and all connections were disabled to prevent further unauthorized access. By December 5, 2025, the company successfully restored the system using a secure backup.
However, on January 2, 2026, a ransomware group known as “TridentLocker” claimed responsibility for the breach. They released approximately 3.4 GB of data associated with the SFTP server on a data leak site. The exposed data may have included the following types of sensitive information:
MCA/SGS has confirmed that approximately 3 New Hampshire residents were affected by this breach. The company is working closely with incident response firm Mandiant, conducting a forensic analysis, and has notified the FBI. The breach was traced back to a vulnerability in the SFTP application used by MCA/SGS.
To mitigate the potential impact on affected individuals, MCA/SGS is offering 12 months of complimentary credit monitoring and identity theft protection services through Kroll. Notifications will begin on February 11, 2026.
When Did This Breach Occur?
The breach was discovered on December 4, 2025, but unauthorized access to the SFTP server began on November 16, 2025. The ransomware group “TridentLocker” claimed responsibility on January 2, 2026, releasing the stolen data on a leak site.
What Information Was Breached?
The following personal information may have been exposed during the breach:
The exposed data could be used for identity theft, fraud, and other forms of financial or personal misuse.
What You Can Do
If you were impacted by this breach, it’s important to take immediate action to protect your personal information:
-
Enroll in Credit Monitoring Services: MCA/SGS is offering 12 months of complimentary credit monitoring and identity theft protection services through Kroll. Follow the instructions provided in the notice to enroll, as MCA/SGS cannot sign you up directly.
-
Monitor Your Accounts: Regularly review your bank, credit card, and other financial accounts for suspicious activity.
-
Request Free Credit Reports: Obtain your free annual credit reports from Equifax, Experian, and TransUnion to identify any unauthorized accounts or transactions.
-
Place Fraud Alerts or Credit Freezes: You can place fraud alerts or a credit freeze on your credit file to make it more difficult for identity thieves to open accounts in your name.
-
Report Suspicious Activity: If you notice any suspicious activity or believe your identity has been stolen, immediately report it to your financial institution, the FTC, and local law enforcement.
Following these steps will help minimize the potential impact of the breach and protect your personal and financial information.
File a Data Breach Lawsuit Against MCA/SGS
If you were notified about this breach and your personal information was exposed, you may be entitled to compensation. Data breaches involving sensitive information like Social Security numbers and Protected Health Information (PHI) can result in significant risks for the affected individuals, including identity theft and financial fraud.
If you were impacted by the breach, you may be eligible to pursue compensation through a class action lawsuit. Joining a class action lawsuit allows individuals who were affected by the same incident to come together and seek restitution for their damages.
Contact Class Action U today for a free consultation. Our team can connect you with a lawyer skilled in class action lawsuits. Fill out our quick, easy, and secure form to learn more about your legal options. There is no cost to reach out, and no obligation after speaking with our team.
