On August 27, 2025, Saint Mary’s Home of Erie (SMHE), a nonprofit senior care provider in Erie, Pennsylvania, detected unauthorized network activity between August 26 and 28, 2025. The breach potentially exposed files and folders on certain servers, including personally identifiable information (PII) and protected health information (PHI) such as names, Social Security numbers, dates of birth, addresses, medical records, and billing details. The incident was reported to the U.S. Department of Health and Human Services on October 24, 2025. While the full scope of the exposed data remains under review, the breach poses significant risks due to the sensitive nature of healthcare data. The organization secured its network and launched an investigation, but the responsible party and method (targeted attack or accidental exposure) remain undisclosed. The breach could lead to identity theft, financial fraud, or misuse of sensitive health data, particularly affecting vulnerable senior patients.
Source: https://www.claimdepot.com/data-breach/saint-marys-home-of-erie-2025
TPRM report: https://www.rankiteo.com/company/saint-mary-s-home-of-erie
"id": "sai3003030112225",
"linkid": "saint-mary-s-home-of-erie",
"type": "Breach",
"date": "8/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Healthcare / Senior Care',
'location': 'Erie, Pennsylvania, USA',
'name': 'Saint Mary’s Home of Erie (SMHE)',
'type': 'Nonprofit Organization'}],
'customer_advisories': ['Individuals notified if impacted; monitoring '
'recommended'],
'data_breach': {'personally_identifiable_information': ['Names',
'Social Security '
'numbers',
'Dates of birth',
'Addresses',
'Medical records',
'Health/billing '
'information'],
'sensitivity_of_data': 'High (includes SSNs, medical records, '
'billing info)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)']},
'date_detected': '2025-08-27',
'description': 'On Aug. 27, 2025, Saint Mary’s Home of Erie (SMHE), a '
'nonprofit senior care provider in Erie, Pennsylvania, '
'discovered unauthorized activity within its network '
'environment. The incident occurred between Aug. 26 and Aug. '
'28, 2025, when files and folders stored on certain servers '
'may have been accessible to individuals outside the '
'organization. The types of information exposed are still '
'under review but may include personally identifiable '
'information (PII) and protected health information (PHI) such '
'as names, Social Security numbers, dates of birth, addresses, '
'medical records, and billing information.',
'impact': {'brand_reputation_impact': 'Potential (under investigation)',
'data_compromised': ['Personally Identifiable Information (PII)',
'Protected Health Information (PHI)'],
'identity_theft_risk': 'Potential (PII/PHI exposed)',
'systems_affected': ['Certain servers hosting files and folders']},
'investigation_status': 'Ongoing (review of impacted files still underway)',
'references': [{'source': 'Saint Mary’s Home of Erie Official Notice'}],
'regulatory_compliance': {'regulations_violated': ['HIPAA (potential, under '
'investigation)'],
'regulatory_notifications': ['Reported to U.S. '
'Department of Health '
'and Human Services '
'(HHS) on 2025-10-24']},
'response': {'communication_strategy': ['Ongoing review of affected files',
'Notification to potentially impacted '
'individuals'],
'containment_measures': ['Network environment secured to prevent '
'further unauthorized access'],
'incident_response_plan_activated': True},
'title': 'Unauthorized Network Access at Saint Mary’s Home of Erie',
'type': 'Data Breach / Unauthorized Access'}