Gaylord Healthcare hit by SAFEPAY ransomware attack exposing patient data
Learn More
Gaylord Specialty Healthcare, a nonprofit rehabilitation-focused health system located in Connecticut was hit by a ransomware attack that compromised sensitive patient and employee information.
The healthcare organization experienced a cybersecurity incident between December 16 and December 19, 2024, that severely disrupted network connectivity across its facilities.
The attack was claimed by SAFEPAY (also known as SafePay) ransomware group. Gaylord Specialty Healthcare launched a forensic investigation. The analysis and document review took more than eight months and confirmed that the hackers successfully obtained approximately 160 GB of sensitive organizational data. The compromised data includes:
- Names and dates of birth
- Social Security Numbers (SSNs)
- Driver's license numbers
- Passport numbers
- Payment card information and financial account details
- Medical records and health information
- Health insurance data
- Additional personally identifiable information (PII)
The number of affected individuals is not disclosed.
Gaylord Specialty Healthcare is providing complimentary credit monitoring services which include Single Bureau Credit Monitoring, Single Bureau Credit Report access, and Single Bureau Credit Score services. Additionally, Gaylord has established a dedicated toll-free response line staffed with professionals specifically trained on the incident details and available to answer questions from affected individuals.
