Family Farm and Home 2025 Data Breach

Family Farm & Home Farm Supply Retailer Breach (2025): 1.3 Million Customer Records Including SSN Exposed via Ransomware | ObscureIQ
ObscureIQ Breach Intelligence

Classification Tags

WorldLeaksRansomwareRetailEmail AddressFull NamePhone NumberSocial Security Number
High SeverityWebsite / service breach

Family Farm & Home Farm Supply Retailer Breach (2025): 1.3 Million Customer Records Including SSN Exposed via Ransomware

Farm, home, outdoor, and pet supply retailer.

Verified by ObscureIQ Intelligence
88/100Breach Risk Index
28Data Value
60Market Recency
135dSince Breach

Breach Intelligence Summary

Entity: Family Farm and Home · Actor: WorldLeaks · Sources: 2 references
Attack: Ransomware
Profile: Company · Agricultural, pet care, and home goods retail · Regional retail chain · USA
Timeline: Breach (2025-11-28) · Indexed (Dec 13, 2025) · Year (2025)
Exposure: 1.3M records · 4 fields: Email Address, Full Name, Phone Number, Social Security Number
Status: Reported

Executive Summary

Family Farm and Home was named on November 28, 2025 as a victim of the WorldLeaks ransomware group, a threat actor that emerged in early 2025 as a rebrand of the former Hunters International operation. The attackers stole internal data and posted the company on their dark-web leak site to pressure payment.\n\nInitial reporting put the total scope at roughly 1.3 million records, with about 755,000 unique email addresses, 1.3 million phone numbers, and around 8,100 Social Security numbers among the stolen data. The breach appears to mix customer contact information with employee records, since retailers of this kind do not typically collect Social Security numbers from customers. The SSN subset is therefore most likely tied to current and former staff. The attack followed the WorldLeaks playbook of data theft and public extortion rather than file encryption.\n\nAffected individuals face two distinct risk profiles. Customers whose contact information was exposed should expect targeted phishing and SMS scams referencing recent purchases. The smaller employee subset whose Social Security numbers were taken faces materially higher risk: identity theft, fraudulent credit applications, and tax-return fraud. Anyone potentially in that group should freeze credit at all three U.S. bureaus, monitor IRS activity for fraudulent filings, and treat any unsolicited contact claiming to be from a creditor or government agency with caution.

ObscureIQ assessment: Primary risks include phishing, order fraud, and account impersonation. Purchase history can also help attackers target households based on farming, pet-care, or home-maintenance interests.

Breach Impact

The breach exposed Family Farm and Home to a typical ransomware-extortion sequence: public listing on the WorldLeaks leak site, threats to publish exfiltrated data, and the start of plaintiff law-firm investigations. The most material institutional risk is the SSN exposure of an estimated 8,100 individuals, who appear to be current and former employees rather than retail customers. That subset drives the litigation risk and the likely cost of identity-theft monitoring, notification, and regulatory disclosure across multiple states. Operationally the chain has continued normal retail activity, and there is no public reporting of payment-card system compromise.

About Family Farm and Home

Family Farm and Home is a privately held U.S. retail chain selling farm, pet, home, automotive, lawn and garden, and outdoor goods. Founded in 1959, the company operates roughly 70 stores across the Midwest, with a heavy footprint in Michigan and surrounding states. Its customer base skews rural and suburban, focused on agricultural and country-living households. The chain operates both physical stores and an e-commerce site at familyfarmandhome.com, and it maintains the employee, customer, loyalty, and payment-related records typical of a regional retailer.

Why They Hold Your Data

Regional retail chains collect customer names, emails, phone numbers, addresses, purchase history, loyalty records, and payment-adjacent data across e-commerce and in-store service operations.

Recent Developments

Family Farm and Home was named publicly by the WorldLeaks ransomware group on November 28, 2025, after threat actors stole internal data. The company has not yet issued a detailed public statement about the incident. U.S. plaintiffs' law firms initiated class-action investigations in mid-December 2025, though no settlement or formal class certification has been reported as of early 2026. The retail business continues to operate normally through its store network and online channel, and the company has not publicly indicated any operational disruption beyond the data exposure itself.

Data Points Exposed

4 verified field types
Email Address
Full Name High
Phone Number
Social Security Number Critical

Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.

Exploitation & Downstream Threats

Threat Activity:Critical
Primary downstream threats:
  • Identity theft and synthetic identity construction using government-issued IDs
  • SIM swap attacks where phone numbers are present
  • Targeted phishing campaigns using exposed email addresses
Threat vectors:
  • Phishing, credential stuffing & account takeover
  • Name-based social engineering
  • SIM swapping, vishing & SMS phishing
  • Full identity theft & synthetic identity fraud

Threat Actor: WorldLeaks

WorldLeaks
Ransomware

Attribution and method are based on available breach intelligence. Reported attack vector: Ransomware.

Recommended Actions

If you believe your information may be included:

Protect Your ID Documents
Government-ID exposure enables document fraud — monitor and report misuse.
IdentityTheft.gov
Enable MFA Everywhere
Turn on multi-factor authentication on email first, then financial accounts.
Find 2FA settings
Report & Recover
If you spot misuse, start an official recovery plan and report fraud.
IdentityTheft.govReport to FTC

Frequently Asked Questions

What happened in the Family Farm and Home breach?

Family Farm and Home was named on November 28, 2025 as a victim of the WorldLeaks ransomware group, a threat actor that emerged in early 2025 as a rebrand of the former Hunters International operation. The attackers stole internal data and posted the company on their dark-web leak site to pressure…

What data was exposed?

Verified fields include Email Address, Full Name, Phone Number, Social Security Number.

What should I do if I was affected?

Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.

Sources & References

Every claim on this page is traceable. This breach draws on:

Breach Index
DataBreach.com
Record & field corroboration
ObscureIQ Intelligence
ObscureIQ proprietary analysis
Risk Index scoring & downstream-threat assessment

Protect Yourself

Check If You're Affected

Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.

Get Free Breach Alerts

Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.

High-Risk? Get an Exposure Audit

Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.

Request Consultation