What happened in the Healthcare Services Group data breach?

Hackers infiltrated HSGI’s network, stole 1.1 TB of data, and deployed ransomware between September 27 and October 3, 2024.

What personal data was exposed?

Names, addresses, Social Security numbers, dates of birth, driver’s license numbers, medical records, health-insurance details, and financial information.

How do I know if I’m affected?

HSGI began mailing notification letters on August 25, 2025. If you receive one—or if your healthcare provider uses HSGI services—assume your data may be at risk.

What should I do after receiving a Healthcare Services Group breach letter?

Enroll in the free Experian IdentityWorks offer, monitor all financial accounts, consider a credit freeze, and consult a data-privacy attorney about your legal options.

Can I join a lawsuit against Healthcare Services Group?

Yes. Individuals whose information was compromised may be eligible to join a class-action lawsuit seeking monetary damages and stronger security commitments from HSGI.

How long is credit monitoring being offered?

Healthcare Services Group is providing 24 months of Experian IdentityWorks credit monitoring and identity restoration services.

Does the breach affect only patients?

No. Employee records, vendor contracts, and other business documents were also exposed, meaning staff and partners may be impacted.

Healthcare Services Group Data Breach Lawsuit Investigation

Were you recently notified that your personal or medical data was stolen from Healthcare Services Group? A ransomware attack has exposed the sensitive information of more than 624,000 patients and employees nationwide. Find out how to protect yourself and see if you qualify for compensation below.

Key Details of the Healthcare Services Group Breach

Incident type: Ransomware attack (claimed by the group “Underground”)
Unauthorized access period: September 27 – October 3, 2024
Breach discovered: June 3, 2025
Individuals affected: 624,496 across the United States
Public disclosure dates: August 25–26, 2025 (state filings & mailed notices)

What Information Was Exposed?

The cyber-criminals reportedly stole 1.1 TB of data, including both personally identifiable information (PII) and protected health information (PHI):

Full names & mailing addresses
Dates of birth
Social Security numbers
Driver’s license or state ID numbers
Medical and health-insurance details
Financial and bank account information
Payroll, tax and employee records
Vendor contracts, legal documents and other confidential files

States Reporting the Breach

Healthcare Services Group filed formal notices with the Attorneys General of:

Maine – 3,871 impacted residents
Massachusetts – 25,583 impacted residents
Texas – 82,280 impacted residents

Your Immediate Next Steps

Use the checklist below to lower the risk of identity theft and strengthen your legal position:

Enroll in free credit monitoring: HSGI is providing 24 months of Experian IdentityWorks.
Review credit & bank statements: Flag suspicious transactions right away.
Place a fraud alert or credit freeze: Contact any major credit bureau for added protection.
Watch for phishing attempts: Attackers may impersonate Healthcare Services Group or healthcare providers.
Document your time & expenses: Save receipts and logs; they can strengthen a future claim.

Can You File a Data Breach Lawsuit?

If you received a notification letter from Healthcare Services Group, you may be entitled to:

Reimbursement of out-of-pocket expenses and lost time
Compensation for emotional distress
Enhanced credit monitoring beyond the two-year offer
Potential punitive damages aimed at strengthening corporate security standards

Class-action investigations are now underway. Contact a qualified data-privacy attorney to discuss your specific situation and deadlines in your state.

Why Did the Breach Happen?

Internal investigations point to a network intrusion exploited by the ransomware outfit “Underground.” The attackers claim to have downloaded the data before encrypting HSGI’s servers. While Healthcare Services Group states it has “implemented additional technical safeguards,” the full forensic report has not been publicly released.

Timeline of Events

Sept 27–Oct 3, 2024: Unauthorized access window
Oct 7, 2024: Suspicious activity detected
June 3, 2025: Breach confirmed as ransomware
Aug 25–26, 2025: State notifications & consumer letters mailed
Today: Lawsuit investigations and regulatory reviews continue

FAQ: Healthcare Services Group Data Breach

What happened in the Healthcare Services Group data breach?: Hackers infiltrated HSGI’s network, stole 1.1 TB of data, and deployed ransomware between September 27 and October 3, 2024.
What personal data was exposed?: Names, addresses, Social Security numbers, dates of birth, driver’s license numbers, medical records, health-insurance details, and financial information.
How do I know if I’m affected?: HSGI began mailing notification letters on August 25, 2025. If you receive one—or if your healthcare provider uses HSGI services—assume your data may be at risk.
What should I do after receiving a Healthcare Services Group breach letter?: Enroll in the free Experian IdentityWorks offer, monitor all financial accounts, consider a credit freeze, and consult a data-privacy attorney about your legal options.
Can I join a lawsuit against Healthcare Services Group?: Yes. Individuals whose information was compromised may be eligible to join a class-action lawsuit seeking monetary damages and stronger security commitments from HSGI.
How long is credit monitoring being offered?: Healthcare Services Group is providing 24 months of Experian IdentityWorks credit monitoring and identity restoration services.
Does the breach affect only patients?: No. Employee records, vendor contracts, and other business documents were also exposed, meaning staff and partners may be impacted.

Stay proactive. Taking swift action today can reduce your risk of identity theft and strengthen any future compensation claim.