Golf course management and hospitality company Kemper Sports Management this week disclosed a data breach impacting the personal information of tens of thousands of individuals.

The firm told the Maine Attorney General’s Office that it became aware of suspicious activity on its network on April 1, 2024. An investigation revealed that as part of a cyberattack a threat actor had gained access to systems storing personal information, including names and Social Security numbers.

KemperSports told the AG that more than 62,000 individuals were impacted by the data breach. A notification letter sent out to impacted people indicates that the compromised data was “primarily related to certain current and former employees”.

According to its website, KemperSports employs more than 7,500 people across 30 states, and has a portfolio of more than 140 locations. 

The company said it does not have any evidence that the information has been misused or used for identity theft or fraud, but impacted individuals are being offered one year of free credit monitoring and identity restoration services. 

No known ransomware group appears to have taken credit for the attack on KemperSports. However, even if this was an attack conducted by a ransomware group, the company would not be listed on leak websites if it paid a ransom. 

SecurityWeek has reached out to KemperSports for clarifications on whether this was a ransomware attack and will update this article if the company responds. 

Unsurprisingly, several law firms issued press releases in the past days in hopes of finding individuals impacted by the KemperSports data breach to file a class action against the company. 

This is not the first time KemperSports has informed authorities about a data breach. Roughly one year ago, the company revealed that it had become aware of unauthorized access to two employee email accounts that had stored files containing sensitive information. 

Related: Wisconsin Insurer Discloses Data Breach Impacting 950,000 Individuals

Related: Slim CD Data Breach Impacts 1.7 Million Individuals

Related: 950,000 Impacted by Young Consulting Data Breach