A recently disclosed Tri-Century Eye Care data breach affects roughly 200,000 individuals, according to the healthcare data breach tracker maintained by the US Department of Health and Human Services (HHS).
Tri-Century Eye Care provides comprehensive eye care services at several locations in Bucks County, Pennsylvania.
In a data security incident notice posted on its website in late October, Tri-Century Eye Care informed patients and employees that their personal and protected health information may have been compromised as a result of a breach detected on September 3.
An investigation revealed that while the organization’s electronic medical records system had not been hacked, the attackers did gain access to files containing information such as name, date of birth, Social Security number, medical or health information, treatment or diagnostic information, health insurance details, payment information, and tax or financial information.
The HHS’s data breach tracker now shows that the incident has been found to impact approximately 200,000 individuals.
The Pear ransomware group took credit for the attack on Tri-Century Eye Care in late September, claiming to have stolen more than 3 Tb of data, including HR, financial, and business operations documents, as well as emails, databases, and personal and health information.
The cybercriminals have since made public the files allegedly stolen from Tri-Century, which indicates that the organization has refused to pay a ransom.
Source: https://www.securityweek.com/tri-century-eye-care-data-breach-impacts-200000-individuals/
Tri-Century Eye Care cybersecurity rating report: https://www.rankiteo.com/company/tricenturyeye
"id": "TRI1765202296",
"linkid": "tricenturyeye",
"type": "Ransomware",
"date": "9/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': '200000',
'industry': 'Healthcare',
'location': 'Bucks County, Pennsylvania, '
'USA',
'name': 'Tri-Century Eye Care',
'size': None,
'type': 'Healthcare Provider'}],
'customer_advisories': 'Data security incident notice posted on '
'website',
'data_breach': {'data_encryption': None,
'data_exfiltration': 'Yes',
'file_types_exposed': None,
'number_of_records_exposed': '200000',
'personally_identifiable_information': ['Name',
'Date of '
'birth',
'Social '
'Security '
'number',
'Medical '
'or '
'health '
'information',
'Treatment '
'or '
'diagnostic '
'information',
'Health '
'insurance '
'details',
'Payment '
'information',
'Tax or '
'financial '
'information'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal '
'information',
'Protected health '
'information',
'Financial '
'information',
'HR documents',
'Business '
'operations '
'documents',
'Emails',
'Databases']},
'date_detected': '2023-09-03',
'date_publicly_disclosed': '2023-10-25',
'description': 'A data breach at Tri-Century Eye Care '
'compromised personal and protected health '
'information of approximately 200,000 '
'individuals. The Pear ransomware group claimed '
'responsibility, exfiltrating over 3 Tb of data, '
'including HR, financial, business operations '
'documents, emails, databases, and personal and '
'health information.',
'impact': {'brand_reputation_impact': None,
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': 'Personal and protected health '
'information, HR, financial, and '
'business operations documents, '
'emails, databases',
'downtime': None,
'financial_loss': None,
'identity_theft_risk': 'High',
'legal_liabilities': None,
'operational_impact': None,
'payment_information_risk': 'High',
'revenue_loss': None,
'systems_affected': None},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'Ongoing',
'motivation': 'Financial gain, Data exfiltration',
'post_incident_analysis': {'corrective_actions': None,
'root_causes': None},
'ransomware': {'data_encryption': None,
'data_exfiltration': 'Yes (3 Tb of data)',
'ransom_demanded': None,
'ransom_paid': 'No',
'ransomware_strain': 'Pear'},
'references': [{'date_accessed': None,
'source': 'US Department of Health and Human '
'Services (HHS) Data Breach Tracker',
'url': None},
{'date_accessed': None,
'source': 'Tri-Century Eye Care Data Security '
'Incident Notice',
'url': None},
{'date_accessed': None,
'source': 'Pear Ransomware Group Claim',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': None,
'regulations_violated': ['HIPAA'],
'regulatory_notifications': 'Reported '
'to US '
'Department '
'of Health '
'and Human '
'Services '
'(HHS)'},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Data security incident '
'notice posted on website',
'containment_measures': None,
'enhanced_monitoring': None,
'incident_response_plan_activated': None,
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': None,
'third_party_assistance': None},
'threat_actor': 'Pear ransomware group',
'title': 'Tri-Century Eye Care Data Breach',
'type': 'Data Breach, Ransomware'}