When did the AACN data breach occur and when was it detected?

The hackers were active in the AACN systems between March 8 and July 31, 2025. AACN detected the breach on July 31, 2025, when they discovered that attackers had accessed payment card information associated with certain website transactions.

What types of information were compromised in the AACN breach?

The exposed data includes payment card information (card number, expiration date, CVV), names, contact information, shipping and billing addresses, phone numbers, and email addresses. The breach primarily affected customer transaction data from the AACN website.

How many people were affected by the AACN data breach?

A total of 57,526 individuals in the United States were affected by the AACN data breach. All affected individuals had conducted transactions through the organization's website payment system during the compromise period.

When were affected individuals notified about the AACN breach?

Affected individuals were notified by written communication on August 29, 2025, approximately one month after the breach was detected on July 31, 2025.

What is AACN offering to affected individuals?

AACN is offering affected individuals two years of complimentary credit and identity monitoring services to help protect against potential misuse of their compromised personal and financial information.

Has AACN disclosed how the breach occurred?

No, the nature of the attack has not been disclosed by AACN. The organization has only confirmed that attackers compromised their website's payment system and accessed sensitive customer information.

How long were attackers in AACN's systems before detection?

Attackers were active in AACN's systems for approximately 4 months and 3 weeks, from March 8, 2025, until they were detected on July 31, 2025. This extended access period allowed the attackers to potentially compromise a significant amount of customer data.

What should affected individuals do about the AACN data breach?

Affected individuals should take advantage of the two years of complimentary credit and identity monitoring services offered by AACN, monitor their payment card statements for unauthorized transactions, consider placing fraud alerts on their credit reports, and be vigilant for phishing attempts using their compromised personal information. They should also contact their credit card companies if they notice any suspicious activity.

Incident

American Association of Critical-Care Nurses reports data breach affecting over 57,000 individuals

Q: What happened to the American Association of Critical-Care Nurses (AACN)?

The American Association of Critical-Care Nurses (AACN) experienced a data breach that exposed sensitive patient and customer information after a compromise of its website's payment system. Attackers accessed payment card information and personal data associated with certain transactions on the organization's website.

Q: What is the American Association of Critical-Care Nurses (AACN)?

The American Association of Critical-Care Nurses (AACN) is a professional nursing organization that serves critical care nurses through education, certification, advocacy, and support services. The organization operates a website where members and healthcare professionals can make purchases and access services.

published: Sept. 1, 2025

Learn More

The American Association of Critical-Care Nurses (AACN) is reporting a data breach that exposed sensitive patient and customer information after a compromise of its website's payment system.

On July 31, 2025, AACN detected that attackers had accessed payment card information associated with certain transactions on the organization's website. The hackers were active in the AACN systems between March 8, and July 31 2025.

Exposed data includes:

Payment card information (card number, expiration date, CVV)
Names
Contact information
Shipping and billing addresses
Phone numbers
Email addresses

A total of 57,526 individuals in the United States were affected. The nature of the attack is not disclosed.

Affected individuals were notified by written communication on on August 29, 2025. AACN is offering affected individuals two years of complimentary credit and identity monitoring services.

American Association of Critical-Care Nurses reports data breach affecting over 57,000 individuals

Read More
Louisiana based Risk Management Services reports data breach …
Ransomware gang INCRansom claims breach of Latin American …
PeopleCheck reports data breach caused by ransomware attack
Law Firm Bassford Remele reports data breach
Chimienti & Associates reports data breach caused by …