EncompassCare reports data breach exposing customer Social Security Numbers
Learn More
EncompassCare, an Ohio-based healthcare provider specializing in rehabilitation and skilled nursing services, reports a significant data breach.
The incident began on September 17, 2024, when unauthorized actors gained access to the company's management IT network. The suspicious activity wasn't detected until October 4, 2024.
After detecting the breach, EncompassCare took containment measures and started an investigation with assistance by third-party cybersecurity experts. The investigation confirmed that unauthorized actors had accessed and potentially acquired documents containing confidential consumer information. Exposed data includes:
- Names
- Addresses
- Phone numbers
- Dates of birth
- Social Security numbers
- Medical information
- Health insurance information
The number of affected individuals and the nature of the attack are not disclosed.
The specific data compromised varies by individual. Detailed information was provided in personalized notification letters sent to affected individuals on January 9, 2025.
