The Covenant Well being group has revised to almost 500,000 the variety of people affected by a knowledge breach found final Might.
The healthcare entity initially reported in July that the information of seven,864 individuals had been uncovered, however additional evaluation has revealed a bigger influence.
After finishing “the majority of its information evaluation,” Covenant Well being now says that 478,188 people had been affected.
Covenant Well being is a Catholic healthcare supplier based mostly in Andover, Massachusetts, working hospitals, nursing and rehabilitation facilities, assisted dwelling residences, and elder care organizations throughout New England and components of Pennsylvania.
Qilin ransomware assault
Covenant Well being discovered on Might 26, 2025, that an attacker had breached its techniques eight days earlier, on Might 18, and gained entry to affected person information.
In late June, the Qilin ransomware group claimed the assault, stating that it had stolen 852 GB of knowledge comprising almost 1.35 million recordsdata.
supply: BleepingComputer
The group says the uncovered info might embrace names, addresses, dates of beginning, medical report numbers, Social Safety numbers, medical health insurance info, and therapy particulars (e.g., diagnoses, dates of therapy, sort of therapy).
In a copy of the discover, Covenant Well being says it engaged third-party forensic specialists to find out what information was affected and what number of people had been impacted.
“That assessment is ongoing,” the group mentioned, with out offering a timeline for ending the investigation and its influence. Covenant Well being mentioned that it has strengthened the safety of its techniques, to forestall comparable incidents sooner or later.
The healthcare entity Covenant Well being is providing affected people 12 months of free identification safety companies to assist detect potential misuse of their info.
Starting December 31, the group began mailing information breach notification letters to sufferers whose info might have been compromised within the Might intrusion.
Whether or not you are cleansing up previous keys or setting guardrails for AI-generated code, this information helps your workforce construct securely from the beginning.
Get the cheat sheet and take the guesswork out of secrets and techniques administration.
