The Covenant Well being group has revised to almost 500,000 the variety of people affected by an information breach found final Could.
The healthcare entity initially reported in July that the info of seven,864 individuals had been uncovered, however additional evaluation has revealed a bigger affect.
After finishing “the majority of its knowledge evaluation,” Covenant Well being now says that 478,188 people have been affected.
Covenant Well being is a Catholic healthcare supplier primarily based in Andover, Massachusetts, working hospitals, nursing and rehabilitation facilities, assisted dwelling residences, and elder care organizations throughout New England and components of Pennsylvania.
Qilin ransomware assault
Covenant Well being discovered on Could 26, 2025, that an attacker had breached its techniques eight days earlier, on Could 18, and gained entry to affected person knowledge.
In late June, the Qilin ransomware group claimed the assault, stating that it had stolen 852 GB of information comprising almost 1.35 million information.
supply: BleepingComputer
The group says the uncovered data might embrace names, addresses, dates of start, medical report numbers, Social Safety numbers, medical health insurance data, and therapy particulars (e.g., diagnoses, dates of therapy, sort of therapy).
In a copy of the discover, Covenant Well being says it engaged third-party forensic specialists to find out what knowledge was affected and what number of people have been impacted.
“That assessment is ongoing,” the group stated, with out offering a timeline for ending the investigation and its affect. Covenant Well being stated that it has strengthened the safety of its techniques, to stop comparable incidents sooner or later.
The healthcare entity Covenant Well being is providing affected people 12 months of free identification safety providers to assist detect potential misuse of their data.
Starting December 31, the group began mailing knowledge breach notification letters to sufferers whose data might have been compromised within the Could intrusion.
It is funds season! Over 300 CISOs and safety leaders have shared how they’re planning, spending, and prioritizing for the 12 months forward. This report compiles their insights, permitting readers to benchmark methods, determine rising developments, and evaluate their priorities as they head into 2026.
Learn the way prime leaders are turning funding into measurable affect.
