North Carolina eye care middle Asheville Eye Associates (AEA) is notifying roughly 147,000 people that their private data was stolen in a November 2024 knowledge breach.
The incident, the corporate says, was detected on November 18, after a risk actor gained entry to its community and exfiltrated sure recordsdata from its techniques.
“We shortly engaged third-party specialists to help us with securing the community surroundings and investigating the incident,” the corporate knowledgeable the impacted people.
The investigation into the stolen knowledge, it says, was concluded on April 14, 2025, and decided that private data resembling names, addresses, Social Safety numbers, remedy particulars, and medical insurance data was stolen within the assault.
“As of this writing, we now have not acquired any stories of id theft associated to this incident,” AEA writes within the notification letter to the impacted people, a replica of which was submitted to the Maine Legal professional Common’s Workplace.
The attention care middle initially disclosed the incident on January 31, when it notified the US Division of Well being and Human Companies that 193,306 folks have been affected. Subsequently, that quantity was up to date to 204,984.
Now, the corporate says it “recognized further people whose private data was contained within the affected data”, however it instructed the Maine AGO that notification letters have been despatched to 147,116 folks, who’re being provided 12 months of free id theft safety companies.
AEA has not shared particulars on the kind of cyberattack it suffered, however the DragonForce ransomware gang added the attention care agency to its Tor-based leak website in December, claiming the theft of almost 540 GB of information. The group has since made the information out there publicly.Commercial. Scroll to proceed studying.
SecurityWeek has contacted Asheville Eye Associates for clarification on the variety of impacted people and affirmation on DragonForce’s claims and can replace this text if the corporate responds.
Associated: Hackers Stole 300,000 Crash Studies From Texas Division of Transportation
Associated: Anubis Ransomware Packs a Wiper to Completely Delete Recordsdata
Associated: MainStreet Financial institution Information Breach Impacts Buyer Cost Playing cards
Associated: Cartier Information Breach: Luxurious Retailer Warns Prospects That Private Information Was Uncovered
