Cyberattack on Stellar Health Group Linked to Qilin Threat Actor
On May 17, 2026, Stellar Health Group a provider of long- and short-term care facilities across Massachusetts and Vermont reportedly fell victim to a cyberattack attributed to the threat actor Qilin. The incident, first noted on the same day, remains under investigation, with details about the scope and nature of compromised data still unclear.
Stellar Health Group, operating as Salter HealthCare, has not officially confirmed the breach. However, legal representatives are actively seeking affected individuals, including current or former residents of its facilities, to assess potential harm. A class action lawsuit is being considered to address privacy violations, financial losses, and other damages resulting from the incident.
The attack highlights ongoing risks in the healthcare sector, where sensitive patient data remains a prime target for ransomware groups. Further updates are expected as the investigation progresses.
Source: https://www.classaction.org/data-breach-lawsuits/stellar-health-group-may-2026
Stellar Health Group TPRM report: https://www.rankiteo.com/company/stellar-health-group
Salter HealthCare TPRM report: https://www.rankiteo.com/company/stellarhealthgroup
"id": "steste1779489591",
"linkid": "stellarhealthgroup, stellar-health-group",
"type": "Ransomware",
"date": "5/2026",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 'Current or former residents of '
'its facilities',
'industry': 'Healthcare',
'location': 'Massachusetts and Vermont, USA',
'name': 'Stellar Health Group (Salter HealthCare)',
'type': 'Healthcare Provider'}],
'data_breach': {'sensitivity_of_data': 'Sensitive patient data'},
'date_detected': '2026-05-17',
'date_publicly_disclosed': '2026-05-17',
'description': 'Stellar Health Group, a provider of long- and short-term care '
'facilities across Massachusetts and Vermont, reportedly fell '
'victim to a cyberattack attributed to the threat actor Qilin. '
'The incident remains under investigation, with details about '
'the scope and nature of compromised data still unclear. Legal '
'representatives are actively seeking affected individuals, '
'including current or former residents of its facilities, to '
'assess potential harm. A class action lawsuit is being '
'considered to address privacy violations, financial losses, '
'and other damages resulting from the incident.',
'impact': {'legal_liabilities': 'Privacy violations, potential class action '
'lawsuit'},
'investigation_status': 'Under investigation',
'references': [{'source': 'Incident report'}],
'regulatory_compliance': {'legal_actions': 'Class action lawsuit being '
'considered'},
'threat_actor': 'Qilin',
'title': 'Cyberattack on Stellar Health Group Linked to Qilin Threat Actor',
'type': 'Ransomware'}