River City Eye Care, a long-standing optometry practice in Oregon with over 20 years of service, experienced a cyberattack where an unauthorized actor copied sensitive patient files from its internal network around September 8, 2025. The breach exposed highly sensitive personally identifiable information (PII), including names, addresses, email addresses, phone numbers, dates of birth, Social Security numbers, and driver’s license numbers of current and former patients. The incident was publicly disclosed via a Notice of Data Event on October 16, 2025, followed by notifications to affected individuals and a report to the Vermont Attorney General’s office on October 20, 2025. The exact number of impacted individuals remains undisclosed. The breach poses significant risks of identity theft, financial fraud, and long-term reputational harm to the affected patients, prompting the company to offer free credit monitoring and identity theft restoration services through Epiq Privacy Solutions. Legal firms are investigating potential class-action lawsuits for compensation due to the severe nature of the exposed data.
Source: https://www.claimdepot.com/investigations/river-city-eye-care-data-breach-2025
TPRM report: https://www.rankiteo.com/company/river-city-eyecare-llc
"id": "riv2962029102125",
"linkid": "river-city-eyecare-llc",
"type": "Cyber Attack",
"date": "9/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Current and former patients '
'(exact number not disclosed)',
'industry': 'Healthcare (Optometry)',
'location': 'Oregon, USA',
'name': 'River City Eye Care',
'type': 'Medical Practice'}],
'customer_advisories': 'Mail notifications sent to affected current and '
'former patients; public notice published on website',
'data_breach': {'data_exfiltration': 'Yes (files copied from internal '
'network)',
'personally_identifiable_information': ['Name',
'Address',
'Email address',
'Phone number',
'Date of birth',
'Social Security '
'number',
"Driver's license "
'number'],
'sensitivity_of_data': "High (includes SSNs, driver's license "
'numbers, and medical-related data)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)']},
'date_detected': '2025-09-08',
'date_publicly_disclosed': '2025-10-16',
'description': 'River City Eye Care, a medical practice providing optometry '
'services in Oregon, experienced a data breach where a '
'cybercriminal copied files from its internal network on or '
'around September 8, 2025. The breach compromised sensitive '
'personally identifiable information (PII) of current and '
'former patients, including names, addresses, email addresses, '
'phone numbers, dates of birth, Social Security numbers, and '
"driver's license numbers. The incident was publicly disclosed "
'via a Notice of Data Event on October 16, 2025, and reported '
"to the Vermont Attorney General's office on October 20, 2025. "
'Affected individuals were notified by mail, and free identity '
'theft protection services (Epiq Privacy Solutions) were '
'offered.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'exposure of sensitive patient data',
'data_compromised': ['Name',
'Address',
'Email address',
'Phone number',
'Date of birth',
'Social Security number',
"Driver's license number"],
'identity_theft_risk': "High (PII including SSNs and driver's "
'license numbers exposed)',
'legal_liabilities': 'Potential lawsuits for compensation (e.g., '
'emotional distress, financial losses)',
'systems_affected': ['Internal network']},
'initial_access_broker': {'high_value_targets': 'Patient PII and PHI'},
'investigation_status': 'Ongoing (as of public disclosure)',
'ransomware': {'data_exfiltration': 'Yes (files copied)'},
'recommendations': ['Enroll in free Epiq Privacy Solutions ID credit '
'monitoring and identity theft restoration services',
'Monitor financial statements for suspicious activity',
'Place a fraud alert on credit reports',
'Request free annual credit reports from major bureaus',
'Seek legal assistance for potential compensation'],
'references': [{'source': 'River City Eye Care Notice of Data Event'},
{'date_accessed': '2025-10-20',
'source': "Vermont Attorney General's Office Report"},
{'source': 'Shamis & Gentile P.A. Investigation Notice'}],
'regulatory_compliance': {'legal_actions': 'Potential class action lawsuits '
'(investigated by Shamis & Gentile '
'P.A.)',
'regulatory_notifications': 'Vermont Attorney '
"General's office "
'(reported on Oct. 20, '
'2025)'},
'response': {'communication_strategy': 'Public notice on website (Oct. 16, '
'2025), mail notifications to affected '
'patients, reporting to Vermont '
'Attorney General (Oct. 20, 2025)',
'incident_response_plan_activated': 'Yes (investigation '
'conducted, public notice '
'issued)',
'recovery_measures': 'Free identity theft protection services '
'offered to affected individuals',
'third_party_assistance': 'Epiq Privacy Solutions (ID credit '
'monitoring and identity theft '
'restoration services)'},
'stakeholder_advisories': 'Patients advised to enroll in identity theft '
'protection and monitor accounts',
'threat_actor': 'Cybercriminal(s)',
'title': 'River City Eye Care Data Breach',
'type': 'Data Breach'}