Survival Flight Data Breach Exposes Sensitive Patient Information
Survival Flight, Inc., an emergency medical transportation provider based in Batesville, Arkansas, disclosed a cybersecurity incident on July 17, 2025, after detecting unauthorized access to its IT systems. The company, which operates air and ground medical transport services across eight states, engaged third-party cybersecurity experts to contain the breach and notified law enforcement.
An investigation revealed that an unauthorized party accessed and exfiltrated files containing sensitive data. On September 12, 2025, the hacking group Worldleaks claimed responsibility, posting the stolen data on the dark web.
The exposed information includes:
- Names
- Addresses
- Dates of birth
- Social Security numbers
- Financial account numbers
- Health insurance details
- Medical records and treatment information
- Patient account numbers
The breach was reported to the Massachusetts Attorney General on March 6, 2026, with 14 individuals in Massachusetts confirmed as affected. Class action law firm Shamis & Gentile P.A. is investigating potential legal claims for those impacted, citing possible compensation for damages related to identity theft risks and remediation efforts.
Source: https://www.claimdepot.com/investigations/survival-flight-data-breach-2026
Survival Flight Inc. cybersecurity rating report: https://www.rankiteo.com/company/survival-flight-inc.
"id": "SUR1773174632",
"linkid": "survival-flight-inc.",
"type": "Breach",
"date": "7/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': '14 (confirmed in Massachusetts)',
'industry': 'Healthcare',
'location': 'Batesville, Arkansas, USA',
'name': 'Survival Flight, Inc.',
'type': 'Emergency Medical Transportation Provider'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': ['Names',
'Addresses',
'Dates of Birth',
'Social Security '
'Numbers',
'Health Insurance '
'Details',
'Patient Account '
'Numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information',
'Health Information',
'Financial Information']},
'date_detected': '2025-07-17',
'date_publicly_disclosed': '2025-07-17',
'description': 'Survival Flight, Inc. disclosed a cybersecurity incident '
'after detecting unauthorized access to its IT systems. The '
'breach involved the exfiltration of sensitive patient data, '
'later claimed by the hacking group Worldleaks and posted on '
'the dark web.',
'impact': {'data_compromised': 'Sensitive patient information including '
'names, addresses, dates of birth, Social '
'Security numbers, financial account numbers, '
'health insurance details, medical records, '
'and patient account numbers',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential class action investigation',
'payment_information_risk': 'High'},
'initial_access_broker': {'data_sold_on_dark_web': 'Yes'},
'investigation_status': 'Ongoing',
'ransomware': {'data_exfiltration': 'Yes'},
'references': [{'source': 'Massachusetts Attorney General'},
{'source': 'Shamis & Gentile P.A.'}],
'regulatory_compliance': {'legal_actions': 'Class action investigation by '
'Shamis & Gentile P.A.',
'regulations_violated': ['HIPAA'],
'regulatory_notifications': 'Reported to '
'Massachusetts Attorney '
'General on 2026-03-06'},
'response': {'containment_measures': 'Engaged third-party cybersecurity '
'experts',
'incident_response_plan_activated': 'Yes',
'law_enforcement_notified': 'Yes',
'third_party_assistance': 'Cybersecurity experts'},
'threat_actor': 'Worldleaks',
'title': 'Survival Flight Data Breach Exposes Sensitive Patient Information',
'type': 'Data Breach'}