Ericsson discloses data breach after hack of third-party service provider

Ericsson Inc., the U.S. subsidiary of Swedish telecommunications and networking company Ericsson, disclosed that attackers accessed sensitive data belonging to employees and customers after breaching one of its third-party service providers.

The incident involved a service provider that stored personal data on behalf of Ericsson. The provider detected the breach on April 28, 2025, prompting an investigation and notification to federal law enforcement authorities.

Ericsson stated that the compromised provider informed the FBI and engaged external cybersecurity specialists to investigate the scope of the incident and determine its potential impact. The investigation concluded last month and confirmed that an undisclosed number of individuals had their personal information exposed.

“Based on the investigation, our service provider determined that a limited subset of files may have been accessed or acquired without authorization between April 17, 2025 and April 22, 2025,” Ericsson said in notification letters sent to affected individuals.

As part of the review process, external data specialists conducted a detailed examination of potentially affected files to identify the presence of personal information. That review was completed on Feb. 23, 2026, at which point Ericsson determined that some individuals’ data was included in the accessed files.

A separate filing with the Texas Attorney General indicated that the breach affected 4,377 individuals in Texas. The exposed information may include names, home addresses, Social Security numbers, driver’s license numbers, government-issued identification numbers such as passport or state ID numbers, financial information including bank account and credit or debit card numbers, medical information, and dates of birth.

Ericsson Inc. is the U.S. subsidiary of Stockholm-based Ericsson, a communications technology company founded in 1876 that develops and supplies networking infrastructure and telecommunications systems. The parent company employs nearly 90,000 people worldwide.

The company reported that it has not identified evidence that the exposed data has been misused since the breach occurred.

Ericsson is offering affected individuals complimentary identity protection services through IDX. The package includes credit monitoring, dark web monitoring, identity theft recovery support, and a $1 million identity fraud loss reimbursement policy. Individuals must enroll in the service by June 9, 2026, to receive the protection.