Almeida Law Group is investigating a data breach at Rich Products Corporation. The breach occurred on November 13, 2025 and was discovered on November 17, 2025. If you were affected, contact Almeida Law Group.
About Rich Products Corporation
Rich Products Corporation is a privately held, family-owned food products company founded in 1945 and headquartered in Buffalo, New York. It produces over 2,000 food products and operates approximately 100 locations globally. In this incident, the compromised data was held not by Rich Products directly, but by First Advantage Corporation, a third-party employment background screening and drug testing company that processed information on behalf of Rich Products through its Drug & Occupational Health Screening Unit.
What Happened?
Rich Products Corporation was listed in a Maine Attorney General filing dated May 27, 2026. The underlying breach, however, originated at First Advantage Corporation, a background screening vendor that processed data for Rich Products. On November 17, 2025, First Advantage discovered that an unauthorized third party had gained access to a single employee’s account in its Drug & Occupational Health Screening Unit through a sophisticated phishing attack. The attacker first obtained access on or about November 13, 2025 and downloaded the contents of that employee’s email inbox. The incident was an internal system breach affecting approximately 200 persons in total. According to state attorney general filings in New Hampshire and Massachusetts, the compromised data included names, Social Security numbers, driver’s license numbers, and dates of birth. First Advantage offered two years of complimentary credit monitoring and identity restoration services through Cyberscout, a TransUnion company, with an enrollment deadline of July 21, 2026. Consumer notification letters were dated April 21–22, 2026.
The notification timeline raises concerns. First Advantage discovered the breach on November 17, 2025, but did not notify Rich Products until March 23, 2026—more than four months later—and consumers were not notified until April 2026, approximately five months after discovery. First Advantage also experienced a separate data breach in November 2024 involving unauthorized access to Profile Advantage accounts using valid login credentials, which affected 431 individuals and exposed names, Social Security numbers, driver’s license numbers, email addresses, and passwords. Multiple law firms, including Cole & Van Note, Shamis & Gentile P.A., and Bryson Harris Suciu & DeMay PLLC, are actively investigating potential class action claims related to the November 2025 breach, though no filed complaint has been confirmed as of late May 2026.
Key Facts at a Glance
- Company or Organization: Rich Products Corporation (filing entity); First Advantage Corporation (breached entity)
- Industry: Food and Beverage Manufacturing (Rich Products); Employment Background Screening / Identity Verification (First Advantage)
- Location: Rich Products Corporation: 1 Robert Rich Way, Buffalo, NY 14213; First Advantage Corporation: 1 Concourse Parkway NE, Suite 200, Atlanta, GA 30328
- Incident type: Internal system breach; phishing attack on a single employee account
- Date of breach: November 13, 2025
- Date breach discovered: November 17, 2025
- Date of consumer notification: April 21–22, 2026
- Total persons affected: Approximately 200
- Identity theft protection offered: Two years of complimentary credit monitoring and identity restoration services through Cyberscout, a TransUnion company
- Enrollment deadline: July 21, 2026
- Prior breach: First Advantage Enterprise Screening Corporation reported a separate breach occurring November 12, 2024 (discovered December 10, 2024), affecting 431 individuals
- Litigation status: Multiple law firms investigating potential class action; no filed complaint confirmed as of late May 2026
- Source: Maine AG Filing; Cole & Van Note Investigation; ClassAction.org; ClaimDepot
What Should You Do?
If you received a notice related to this breach, consider enrolling in the two years of complimentary credit monitoring and identity restoration services offered through Cyberscout before the July 21, 2026 deadline by visiting https://bfs.cyberscout.com/activate. Because Social Security numbers and driver’s license numbers were among the compromised data types, you should also consider placing a fraud alert or credit freeze with Equifax, Experian, and TransUnion. You can request free credit reports from all three bureaus at AnnualCreditReport.com and review them carefully for unfamiliar accounts or activity. If you suspect misuse of your information, visit IdentityTheft.gov for step-by-step guidance on reporting and recovery.
Your Legal Rights
If your personal information was involved in this breach, you may have legal rights depending on the facts of the incident and the law in your state. Almeida Law Group represents consumers in data breach and privacy litigation and can help you evaluate whether you may have a claim. Contact us at (708) 529-5418 or through our contact page for a free case evaluation.
