Archer Health, a US-based provider of in-home and palliative care services, exposed 145,000 sensitive files (23GB) through an unprotected, publicly accessible database. The leaked data included patient names, Social Security Numbers (SSNs), diagnoses, treatment records, home health certifications, discharge forms, postal addresses, phone numbers, and other personally identifiable information (PII). The breach was discovered by cybersecurity researcher Jeremiah Fowler, who alerted the company, prompting them to secure the database. While no evidence of dark web distribution was found, the exposure posed severe risks due to the highly sensitive medical and personal data involved. The company acknowledged the incident, stating they take data security seriously and are investigating further. The duration of exposure and potential unauthorized access remain unknown.
TPRM report: https://www.rankiteo.com/company/archer-health
"id": "arc2192321092625",
"linkid": "archer-health",
"type": "Breach",
"date": "9/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '145,000 files (potentially '
'thousands of patients)',
'industry': 'in-home medical and palliative care '
'services',
'location': 'United States',
'name': 'Archer Health (also known as Archer Home '
'Health/Home Health & Palliative Care)',
'type': 'healthcare provider'}],
'attack_vector': 'unprotected, publicly accessible database',
'data_breach': {'data_encryption': 'none (database was unencrypted)',
'data_exfiltration': 'unconfirmed (no evidence of dark web '
'distribution)',
'file_types_exposed': ['PDF', 'PNG', 'other document types'],
'number_of_records_exposed': '145,000 files (23GB)',
'personally_identifiable_information': ['names',
'patient ID numbers',
'Social Security '
'Numbers (SSNs)',
'postal addresses',
'phone numbers'],
'sensitivity_of_data': 'high (includes SSNs, medical '
'diagnoses, and treatment details)',
'type_of_data_compromised': ['personally identifiable '
'information (PII)',
'protected health information '
'(PHI)',
'medical records',
'diagnoses',
'treatments',
'home health certifications',
'plan of care documents',
'discharge forms',
'internal documents']},
'description': 'Archer Health, a US-based in-home and palliative care service '
'provider, exposed an unprotected, publicly accessible '
'database containing roughly 145,000 files (23GB), including '
'names, SSNs, diagnoses, and other personal and medical '
"information. The database was secured after a researcher's "
'tip, with no evidence of dark web distribution yet.',
'impact': {'brand_reputation_impact': 'potential reputational damage due to '
'exposure of sensitive patient data',
'data_compromised': True,
'identity_theft_risk': 'high (SSNs, PII, and medical records '
'exposed)',
'systems_affected': ['unprotected database']},
'investigation_status': 'ongoing (company stated they are actively '
'investigating)',
'post_incident_analysis': {'root_causes': ['unprotected database',
'lack of encryption',
'lack of access controls']},
'references': [{'source': 'WebsitePlanet (via Jeremiah Fowler)'},
{'source': 'TechRadar Pro'}],
'response': {'communication_strategy': ['acknowledgment to researcher',
'statement emphasizing commitment to '
'data security and patient privacy'],
'containment_measures': ['database locked down after '
"researcher's tip"],
'incident_response_plan_activated': True,
'third_party_assistance': ['researcher Jeremiah Fowler',
'WebsitePlanet']},
'title': 'Archer Health Exposed 145,000 Sensitive Files Through Unprotected '
'Database',
'type': ['data breach', 'unsecured database exposure'],
'vulnerability_exploited': 'lack of encryption and password protection'}