Data breach at care home exposes thousands of records
A cyberattack at a care home resulted in a data breach where sensitive records of thousands of individuals were accessed. The incident underscores the interconnected cyber risks facing healthcare and insurance providers, increasing insurer demand for solutions that can rapidly assess and underwrite such events.
- A recent hacking incident at Ohio-based HCF Management affected nearly 70,000 residents across its skilled nursing facilities in Ohio and Pennsylvania. - The Russian-speaking cybercriminal group RansomHub was identified as the perpetrator in the HCF Management hack. - Compromised data in these types of breaches often includes Social Security numbers, driver's license numbers, health insurance information, medical records, and financial details. - Experts suggest that care homes are appealing targets because elderly residents are less likely to actively monitor their credit, giving cybercriminals more time to misuse stolen data. - The healthcare sector ranked third for the number of ransomware attacks last year, with about 4% of those attacks targeting nursing homes and assisted living facilities. - Another breach at Methodist Homes of Alabama and Northwest Florida may have exposed the sensitive information of up to 25,579 individuals. - The average time to detect and contain an email-related breach in the healthcare sector was over 10 months in 2025. - Following a breach, facilities are generally required to notify affected individuals and may offer services like free credit monitoring and identity protection.
