Hunters International hacker group claims hacking Covenant Care, leaks data

The hacking group Hunters International claim to have targeted Covenant Care, and have progressively leaked what seems to be both patients’ protected health information (PHI) and employees’ personal data. Covenant Care, which provides skilled nursing, residential care, therapy, and home health services across 29 locations in California and Nevada, has not acknowledged any data security incident. According to Hunters International, they encrypted files, but Covenant Care’s website shows no signs of service disruption.

Covenant Care has not provided any comment nor response to the announcement.

In a similar announcement, Hunters International claimed data breach of Crystal Lake Health Centers in Michigan. As with this attack, Crystal Lake did not comment nor report an incident.

It's unclear whether Hunters International has really breached the institutions or they have scraped other leaks and ransom organizations.

Update - on August 29, 2024, Covenant Care California confirmed the data breach in a report to the Attorney General of Massachusetts. According to the notice, the data breach exposed the sensitive information of consumers, which may include:

• Names,
• Dates of birth,
• Medical information,
• Health insurance information,
• Social Security numbers,
• Financial account information,
• Credit/debit card numbers,
• Driver's license numbers,
• State identification numbers.

The number of affected individuals is not disclosed. The company began sending out data breach notification letters on August 29, 2024, to all individuals whose data was affected by the incident.