What happened in the Covenant Health data breach?

A ransomware attack in May 2025 exposed sensitive patient data from Covenant Health systems.

How many patients were affected by the Covenant Health breach?

Nearly 500,000 patients were impacted by the data breach.

What information was exposed in the Covenant Health breach?

Potentially exposed data includes addresses, dates of birth, Social Security numbers, and treatment details.

Home / Health / Covenant Health Breach Triples: Nearly 500K Patients Exposed

Covenant Health Breach Triples: Nearly 500K Patients Exposed

3 Jan

•

Summary

Nearly 500,000 patients impacted by a ransomware attack discovered in May 2025.
Sensitive data including SSNs, birth dates, and treatment info were potentially exposed.
Covenant Health offers one year of free identity theft protection from Experian.

Covenant Health Breach Triples: Nearly 500K Patients Exposed

Covenant Health, a healthcare provider operating across New England and Pennsylvania, has disclosed a far larger data breach than initially reported. Discovered on May 26, 2025, the ransomware attack, claimed by the Qilin group, compromised the sensitive information of approximately 478,188 patients. The breach, which occurred on May 18, 2025, potentially exposed addresses, dates of birth, Social Security numbers, and treatment details.

Covenant Health confirmed the expanded scope of the breach through a third-party forensic investigation. While the review process is ongoing, the organization has strengthened its security measures to prevent future incidents. The Qilin ransomware group stated they stole 852GB of data, comprising nearly 1.35 million files, from Covenant Health's systems.