AllerVie Health Data Breach Leaks Social Security Numbers

On Dec. 23, 2025, AllerVie Health, a leading provider of allergy and immunology services, disclosed a significant data breach exposing personally identifiable information (PII) of a limited number of individuals. The incident was the result of a ransomware attack by the ANUBIS group, which claimed responsibility on Nov. 26, 2025, via a posting on the Tor network.

On Nov. 2, 2025, AllerVie Health became aware of the breach, and concluded that a certain amount of sensitive information was accessed by unauthorized threat actors between Oct. 24, 2025, and Nov. 3, 2025. Upon review, the company determined that the compromised information included sensitive PII, such as Social Security numbers, driver’s license or state ID numbers and names.

The severity of the breach is heightened by the involvement of a ransomware group known for targeting healthcare organizations. The attackers not only encrypted data but also threatened to leak stolen information unless their demands were met, putting affected individuals at risk of identity theft and other forms of fraud. The breach was first made public on the dark web nearly a month before AllerVie Health notified authorities, raising concerns about the potential window during which data may have been misused.

The company disclosed the data breach to the New Hampshire Attorney General on Dec. 23, 2025, and notified impacted individuals by mail.

AllerVie Health's response

Following the discovery of the ransomware attack, AllerVie Health initiated an investigation and began notifying affected individuals as required by law. The company is also offering impacted individuals complimentary credit monitoring and identity protection services through Cyberscout, a TransUnion company.

If you receive notification from AllerVie Health or your provider about this breach, you may want to:

• Sign up for the free Cyberscout identity theft protection services, offered by AllerVie Health.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

For affected individuals with questions, AllerVie Health has set up a call center at 833-877-1419, Monday through Friday, 8 a.m. to 8 p.m. ET.