KCI Telecommunications Hit by Akira Ransomware Attack, Exposing Sensitive Data KCI Telecommunications, a North Carolina-based engineering and professional services firm specializing in telecom infrastructure, suffered a data breach after the Akira ransomware group infiltrated its systems. The attack was first detected on August 22, 2025, when the company identified suspicious network activity. Akira later claimed responsibility, posting details of the breach on the dark web on September 19, 2025, alleging the theft of extensive corporate and personal data, including employee records, financial documents, contracts, and customer information. A third-party cybersecurity investigation confirmed that an unauthorized actor accessed and exfiltrated files from KCI’s network. While Akira’s claims included a broad range of sensitive data such as driver’s license numbers, payment details, and non-disclosure agreements the confirmed exposed information was limited to personally identifiable information (PII), including names and Social Security numbers. KCI reported the incident to federal law enforcement and notified the Maine Attorney General’s office, with impacted individuals receiving written breach notifications on February 25, 2026. The number of affected individuals remains undisclosed, though at least one Maine resident was confirmed as impacted. In response, KCI offered one year of complimentary credit monitoring and identity restoration services through Experian and set up a dedicated support line (833-931-4244) for affected parties. The company continues to review and strengthen its security measures following the incident.