Manpower, a well-known staffing firm, has publicly announced a data breach incident.

=====================================================================

Manpower, a leading global staffing agency, has confirmed a data breach affecting 144,189 individuals. The breach occurred at one of Manpower's franchises located in Lansing, Michigan, between December 29, 2024, and January 12, 2025.

The IT outage disrupted access to specific local systems in Manpower's Lansing office, leading to the discovery of the breach during an investigation. Potentially, certain files containing personal data were acquired by an unknown actor during the breach, although no further information about the nature of the compromised personal data was provided.

Upon learning of the breach, Manpower launched an investigation and implemented enhanced security measures to prevent a similar incident. The company also notified the FBI about the data breach. The Lansing franchise operates on an independent data platform, making this an isolated incident.

On August 11, 2025, Manpower notified affected individuals that their personal information, including their names, had been compromised. In response, the company is offering affected individuals 12 months of complimentary Equifax credit monitoring and identity theft protection services.

Recent reports suggest that the cyber-attack was linked to the RansomHub ransomware group, which allegedly exfiltrated approximately 500GB of data. However, specific attribution to a particular person or organization is not publicly confirmed in the available sources.

In a statement, a ManpowerGroup spokesperson said, "We deeply regret any inconvenience or concern this incident may cause our candidates, clients, and other stakeholders. We are committed to supporting the individuals affected by this incident and are taking steps to strengthen our cybersecurity measures."

This article was updated on August 13 to add comments from a ManpowerGroup spokesperson. Manpower is also counseling the franchisee and supporting their efforts in managing the response. The breach was reported in a filing with the Office of the Main Attorney General.

The RansomHub ransomware attack on January 22, 2025, is listed in cyber attack summaries relating to early 2025 ransomware cases with large data leaks, but no definitive official entity is named. The incident is a reminder of the ongoing threats posed by cybercriminals and the importance of robust security measures to protect sensitive data.

Manpower, a well-known staffing firm, has publicly announced a data breach incident.