Brightspeed is currently looking into reports of a data breach following claims from a hacking group known as Crimson Collective regarding the theft of customer records. The group alleges it has obtained sensitive personal and billing information belonging to more than one million users across the company's twenty-state service area.

The telecommunications provider Brightspeed has launched a formal investigation into a potential cybersecurity incident after a hacking organization claimed to have accessed its internal systems. The group responsible, Crimson Collective, asserts that it successfully exfiltrated the personal data of over one million residential and business customers. In response to these reports, a company spokesperson stated that they are working to verify the claims and will provide updates to employees, customers, and relevant authorities as the situation develops.

The information allegedly compromised in this attack includes a wide range of sensitive details such as full names, billing addresses, email addresses, and phone numbers. Furthermore, the hackers claim to have obtained specific account data, including payment details, service records, and account statuses. To substantiate their claims, the Crimson Collective shared evidence of the stolen data with several dark web monitors and cybersecurity experts, signaling a significant breach of privacy for the company's large user base.

This incident follows a pattern of high-profile activity from Crimson Collective, which has previously targeted major organizations for extortion purposes. Last year, the group gained notoriety for breaching a GitLab instance belonging to Red Hat, where they claimed to have stolen hundreds of gigabytes of data from thousands of private repositories. That specific breach had far-reaching consequences, eventually impacting secondary partners who relied on the compromised infrastructure.

GET 50% Discount for VPN/ANTIVIRUS SOFTWARE AT 911Cyber - CODE: bit5025

The ripple effects of the group’s previous work were felt as recently as late December 2025, when the Japanese automaker Nissan revealed that its own data had been caught up in the Red Hat incident. Nissan confirmed that the personal information of approximately 21,000 customers was affected due to that historical breach. This connection highlights the persistent threat posed by the collective and the potential for long-term data exposure when major service providers are targeted.

Brightspeed maintains that it remains committed to the security of its network and the protection of both employee and customer information. While the investigation is ongoing, the company emphasizes that it monitors for threats rigorously to ensure the integrity of its infrastructure. For now, the provider is focused on determining the full scope of the incident and whether the hackers’ claims regarding the volume and type of stolen data are accurate.

Source: Brightspeed Launches Investigation Into Suspected Cyberattack