Westminster Village Greenwood Data Breach Exposes Sensitive Resident Information
Westminster Village Greenwood Inc., a nonprofit senior living community in Greenwood, Indiana, disclosed a data breach on March 12, 2026, after detecting unauthorized network access nearly a year prior. The incident, reported to the Massachusetts Office of Consumer Affairs and Business Regulation, affected six Massachusetts residents but potentially compromised a wide range of sensitive data.
The breach occurred between February 11 and 17, 2025, when an unauthorized actor accessed the organization’s systems. Westminster Village Greenwood launched an investigation with external cybersecurity experts, followed by a manual review of affected files, concluding in January 2026 that personally identifiable information (PII) and protected health information (PHI) may have been exposed.
Exposed data includes full names, addresses, dates of birth, Social Security numbers, driver’s license and passport numbers, financial account details, and usernames and passwords. Additionally, medical records, diagnoses, treatment information, medications, lab results, and health insurance details were compromised.
In response, Westminster Village Greenwood is offering affected individuals complimentary credit monitoring through Experian IdentityWorks Credit 3B and has set up a dedicated response line for inquiries. The organization also advised impacted individuals to take precautionary measures, including placing credit freezes, setting fraud alerts, and monitoring financial and health insurance statements for suspicious activity.
Source: https://www.claimdepot.com/data-breach/westminster-village-2026
Westminster Village Terre Haute, Inc. cybersecurity rating report: https://www.rankiteo.com/company/westminster-village-terre-haute-inc
"id": "WES1773678850",
"linkid": "westminster-village-terre-haute-inc",
"type": "Breach",
"date": "2/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '6 (Massachusetts residents, '
'potentially more)',
'industry': 'Healthcare/Senior Living',
'location': 'Greenwood, Indiana, USA',
'name': 'Westminster Village Greenwood Inc.',
'type': 'Nonprofit senior living community'}],
'attack_vector': 'Unauthorized network access',
'customer_advisories': 'Complimentary credit monitoring through Experian '
'IdentityWorks Credit 3B offered to affected '
'individuals. Dedicated response line set up for '
'inquiries.',
'data_breach': {'personally_identifiable_information': ['Full names',
'Addresses',
'Dates of birth',
'Social Security '
'numbers',
'Driver’s license '
'numbers',
'Passport numbers',
'Financial account '
'details',
'Usernames and '
'passwords',
'Medical records',
'Diagnoses',
'Treatment '
'information',
'Medications',
'Lab results',
'Health insurance '
'details'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally identifiable '
'information (PII)',
'Protected health information '
'(PHI)']},
'date_detected': '2025-02-11',
'date_publicly_disclosed': '2026-03-12',
'date_resolved': '2026-01-01',
'description': 'Westminster Village Greenwood Inc., a nonprofit senior living '
'community in Greenwood, Indiana, disclosed a data breach on '
'March 12, 2026, after detecting unauthorized network access '
'nearly a year prior. The incident affected six Massachusetts '
'residents but potentially compromised a wide range of '
'sensitive data, including personally identifiable information '
'(PII) and protected health information (PHI).',
'impact': {'data_compromised': 'Personally identifiable information (PII) and '
'protected health information (PHI)',
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'investigation_status': 'Concluded',
'recommendations': 'Affected individuals advised to place credit freezes, set '
'fraud alerts, and monitor financial and health insurance '
'statements for suspicious activity.',
'references': [{'source': 'Massachusetts Office of Consumer Affairs and '
'Business Regulation'}],
'regulatory_compliance': {'regulatory_notifications': 'Reported to the '
'Massachusetts Office '
'of Consumer Affairs '
'and Business '
'Regulation'},
'response': {'communication_strategy': 'Public disclosure, dedicated response '
'line',
'incident_response_plan_activated': 'Yes',
'remediation_measures': 'Manual review of affected files',
'third_party_assistance': 'External cybersecurity experts'},
'title': 'Westminster Village Greenwood Data Breach Exposes Sensitive '
'Resident Information',
'type': 'Data Breach'}