Excerpt from GbHackers Article, Published on September 12, 2025
Cornwell Tools, a prominent supplier of automotive and industrial tools, recently disclosed a significant data breach impacting over 103,000 individuals. The cybersecurity incident took place on December 12, 2024, when unauthorized parties infiltrated the company’s network, exposing sensitive customer information including names, Social Security numbers, medical records, and financial account details.
The breach compromised both personally identifiable information (PII) and protected health information (PHI), raising serious concerns about identity theft and financial fraud risks for affected individuals. Cornwell Tools responded by immediately launching an investigation to identify the breach scope and secure their systems against further unauthorized access.
Affected customers were notified via official letters sent on September 4, 2025, almost nine months after the incident occurred, reflecting the thorough investigation process necessary to assess the full breach impact. These notifications included guidance on protective steps to mitigate misuse of the compromised data.
Legal action has been initiated in response to this breach, with law firm Goldenberg Schneider, LPA offering support to affected individuals. Those receiving breach notifications are encouraged to consult the firm to understand their rights and potential remedies.
This incident highlights the ongoing cybersecurity challenges that businesses like Cornwell Tools face and underscores the importance of robust data protection practices in safeguarding sensitive customer data.
For more details on this breach, visit the GbHackers Article.
