VITAS Hospice Services Suffers Major Data Breach Affecting 300,000 Patients
On December 10, 2025, national class action law firm Edelson Lechtzin LLP announced an investigation into a cybersecurity incident at VITAS Hospice Services, LLC, one of the largest U.S. providers of hospice and palliative care. The breach, discovered on October 24, 2025, stemmed from a compromised vendor account that granted unauthorized access to VITAS systems between September 21 and October 27, 2025.
The incident exposed sensitive data belonging to approximately 300,000 current and former patients, including personal contact details, Social Security numbers, driver’s license numbers, next-of-kin information, medical records, and insurance data. VITAS, founded in 1978 and headquartered in Florida, has not disclosed further details on the breach’s origin or the vendor involved.
Edelson Lechtzin LLP is pursuing a class action lawsuit on behalf of affected individuals, seeking legal remedies for the compromised data. The firm, which specializes in data breach litigation, is urging impacted patients to come forward. No official response from VITAS regarding remediation efforts or notifications to affected individuals has been confirmed as of the announcement.
Gentiva cybersecurity rating report: https://www.rankiteo.com/company/gentiva
"id": "GEN1765410938",
"linkid": "gentiva",
"type": "Breach",
"date": "10/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '300000',
'industry': 'Hospice and Palliative Care',
'location': 'United States',
'name': 'VITAS Hospice Services, LLC',
'type': 'Healthcare Provider'}],
'attack_vector': 'Compromised Vendor Account',
'customer_advisories': 'Data breach notification to affected individuals with '
'steps to protect against identity theft and fraud.',
'data_breach': {'data_exfiltration': 'Possible',
'number_of_records_exposed': '300000',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal contact details',
'Social Security numbers',
'Driver’s license numbers',
'Next-of-kin information',
'Medical records',
'Insurance information']},
'date_detected': '2025-10-24',
'date_publicly_disclosed': '2025-12-10',
'description': 'VITAS Hospice Services, LLC experienced a data breach due to '
'a compromised vendor account, leading to unauthorized access '
'to sensitive patient information between September 21 and '
'October 27, 2025. Approximately 300,000 current and former '
'patients may have had their data viewed or stolen.',
'impact': {'data_compromised': 'Personal contact details, Social Security '
'numbers, driver’s license numbers, '
'next-of-kin information, medical records, and '
'insurance information',
'identity_theft_risk': 'High'},
'initial_access_broker': {'entry_point': 'Vendor account compromise'},
'investigation_status': 'Ongoing',
'recommendations': 'Affected individuals should regularly review account '
'statements and monitor credit reports for suspicious '
'activity.',
'references': [{'date_accessed': '2025-12-10', 'source': 'Globe Newswire'}],
'regulatory_compliance': {'legal_actions': 'Class action lawsuit '
'investigation'},
'response': {'communication_strategy': 'Data breach notification to affected '
'individuals'},
'title': 'VITAS Hospice Services Data Breach',
'type': 'Data Breach'}