Next Step Healthcare

Next Step Healthcare in Massachusetts confirmed a data breach in June 2024 that compromised Social Security numbers, medical records, financial account details, drivers’ licenses, and credit and debit card numbers of thousands of patients. The ransomware gang Qilin took credit for the attack on July 17, 2024. The breach affected at least 10,041 residents in Massachusetts and 1,697 in New Hampshire. Next Step is offering free credit monitoring to eligible victims. The breach could lead to financial exploitation, especially for elderly people who are at higher risk of identity theft.

Source: https://www.comparitech.com/news/next-step-healthcare-data-breach-leaks-patients-ssns-medical-records-and-credit-cards/

TPRM report: https://scoringcyber.rankiteo.com/company/nextstephc

"id": "nex857060225",
"linkid": "nextstephc",
"type": "Ransomware",
"date": "6/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': ['10,041 in Massachusetts',
                                               '1,697 in New Hampshire'],
                        'industry': 'Healthcare',
                        'location': 'Massachusetts',
                        'name': 'Next Step Healthcare',
                        'type': 'Healthcare'}],
 'attack_vector': 'Phishing emails',
 'data_breach': {'personally_identifiable_information': ['Social Security '
                                                         'numbers',
                                                         'Drivers’ licenses',
                                                         'Credit and debit '
                                                         'card numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Social Security numbers',
                                              'Medical records',
                                              'Financial account details',
                                              'Drivers’ licenses',
                                              'Credit and debit card numbers']},
 'date_detected': '2024-06-05',
 'date_publicly_disclosed': '2024-07-17',
 'description': 'Next Step Healthcare in Massachusetts confirmed a data breach '
                'in June 2024 that compromised personal information including '
                'Social Security numbers, medical records, financial account '
                'details, drivers’ licenses, and credit and debit card '
                'numbers. The ransomware gang Qilin took credit for the attack '
                'on July 17, 2024.',
 'impact': {'data_compromised': ['Social Security numbers',
                                 'Medical records',
                                 'Financial account details',
                                 'Drivers’ licenses',
                                 'Credit and debit card numbers'],
            'identity_theft_risk': ['High'],
            'payment_information_risk': ['High']},
 'initial_access_broker': {'entry_point': 'Phishing emails'},
 'investigation_status': 'Ongoing',
 'motivation': 'Financial Gain',
 'ransomware': {'ransomware_strain': 'Qilin'},
 'references': [{'source': 'Comparitech'}],
 'response': {'communication_strategy': ['Offering free credit monitoring '
                                         'through IDX'],
              'third_party_assistance': ['Outside experts']},
 'threat_actor': 'Qilin',
 'title': 'Next Step Healthcare Data Breach',
 'type': 'Data Breach, Ransomware'}