Saint Mary’s Home of Erie, a nonprofit Continuing Care Retirement Community (CCRC) in Erie, Pennsylvania, experienced a data breach discovered on August 27, 2025. Unauthorized individuals potentially accessed files and folders on certain servers between August 26–28, 2025, exposing sensitive personally identifiable information (PII) of at least 501 individuals. Compromised data may include names, dates of birth, addresses, Social Security numbers, tax IDs, and protected health information (PHI). The breach was reported to the U.S. Department of Health and Human Services (HHS) on October 24, 2025, with investigations ongoing. Affected individuals face risks of identity theft, fraud, and financial exploitation, prompting recommendations for vigilance, credit monitoring, fraud alerts, and legal recourse for potential compensation.
Source: https://www.claimdepot.com/investigations/saint-marys-home-of-erie-data-breach-2025
Saint Mary's Home of Erie cybersecurity rating report: https://www.rankiteo.com/company/saint-mary-s-home-of-erie
"id": "SAI4602846112225",
"linkid": "saint-mary-s-home-of-erie",
"type": "Breach",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '501+ (as of October 24, 2025; '
'investigation ongoing)',
'industry': 'Healthcare (Continuing Care Retirement '
'Community - CCRC)',
'location': 'Erie, Pennsylvania, USA',
'name': 'Saint Mary’s Home of Erie',
'type': 'Nonprofit Organization'}],
'customer_advisories': 'Affected individuals notified; advised to monitor '
'accounts, place fraud alerts, and seek legal help if '
'needed',
'data_breach': {'data_exfiltration': 'Potential (files and folders accessed '
'by unauthorized individuals)',
'number_of_records_exposed': '501+ (as of October 24, 2025; '
'investigation ongoing)',
'personally_identifiable_information': ['Names',
'Dates of birth',
'Addresses',
'Social Security '
'numbers',
'Tax ID numbers'],
'sensitivity_of_data': 'High (includes SSNs, tax IDs, and '
'PHI)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)']},
'date_detected': '2025-08-27',
'date_publicly_disclosed': '2025-10-24',
'description': 'Saint Mary’s Home of Erie, a nonprofit Continuing Care '
'Retirement Community (CCRC), discovered a potential incident '
'within its network environment on August 27, 2025. '
'Unauthorized individuals may have accessed files and folders '
'stored on certain servers between August 26, 2025, and August '
'28, 2025. The breach was reported to the U.S. Department of '
'Health and Human Services on October 24, 2025, with at least '
'501 individuals in the U.S. affected. The exposed data may '
'include names, dates of birth, addresses, Social Security and '
'tax ID numbers, and protected health information.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'exposure of sensitive personal and '
'health data',
'data_compromised': ['Names',
'Dates of birth',
'Addresses',
'Social Security numbers',
'Tax ID numbers',
'Protected health information'],
'identity_theft_risk': 'High (due to exposure of PII and PHI)',
'legal_liabilities': 'Potential lawsuits and compensation claims '
'for affected individuals',
'systems_affected': ['Certain servers (files and folders)']},
'investigation_status': 'Ongoing (as of October 24, 2025)',
'recommendations': ['Sign up for free identity theft protection services (if '
'offered)',
'Monitor financial accounts for suspicious activity',
'Place a fraud alert with credit bureaus',
'Request free annual credit reports',
'Seek legal counsel for potential compensation claims'],
'references': [{'source': 'Shamis & Gentile P.A. Investigation Notice'}],
'regulatory_compliance': {'legal_actions': 'Under investigation; potential '
'class-action lawsuits by Shamis & '
'Gentile P.A.',
'regulations_violated': ['HIPAA (potential '
'violation due to PHI '
'exposure)'],
'regulatory_notifications': ['Reported to U.S. '
'Department of Health '
'and Human Services '
'(HHS) on October 24, '
'2025']},
'response': {'communication_strategy': 'Public disclosure to HHS (October 24, '
'2025); notices to affected '
'individuals; advisory for vigilance '
'against identity theft',
'containment_measures': 'Systems secured immediately upon '
'discovery',
'incident_response_plan_activated': True},
'stakeholder_advisories': 'Encouraged to remain vigilant for identity theft '
'or fraud; free identity theft protection services '
'may be offered',
'title': 'Saint Mary’s Home of Erie Data Breach',
'type': 'Data Breach'}