Assisted Living Pharmacy Service Data Breach Impacts Thousands

Published

September 11, 2025

Updated

September 11, 2025

Assisted Living Pharmacy Service

Types of INFORMATION affected

Names
Social Security Numbers
Dates of Birth
Addresses
Government IDs
Medical Info
Financial Info

Assisted Living Pharmacy Service LLC (ALPS), a Wisconsin-based long-term care pharmacy, experienced a data breach affecting at least 5,590 individuals. On or about June 26, 2025, the pharmacy discovered suspicious activity within its network. An investigation took place and determined that an unauthorized actor gained access to the pharmacy's computer environment between June 25, 2025, and June 27, 2025.

A review was completed on Aug. 8, 2025 and revealed that the data breach compromised both personally identifiable information (PII) and protected health information (PHI). Patients who received prescription services from ALPS between Jan. 2024 and June 2025 may have been impacted.

The Qilin ransomware group, claimed responsibility and posted about the incident on their dark web portal on Aug. 12, 2025. They asserted they had obtained 150 GB of organization data and released sample screenshots as proof. This type of ransomware attack means that not only was sensitive data stolen, but the company may have faced threats of public exposure or further extortion.

Exposed information includes names, addresses, dates of birth, Social Security numbers, driver's license or state ID numbers, medical records, lab results, prescribed medications, treatment information, health insurance claim information and financial information including payment card details.

Assisted Living Pharmacy Service disclosed the data breach to the U.S. Department of Health and Human Services on Aug. 12, 2025. The pharmacy also published a Notice of Data Event on its website.

Assisted Living Pharmacy Service's response

In response to the breach, ALPS acted to contain the incident. In addition to required state and federal disclosures, the pharmacy will identity impacted individuals by mail.

If you believe your personal information may have been compromised in this breach:

Carefully review any notice or communication you receive from the pharmacy.
Monitor financial accounts and credit reports for signs of identity theft.
Consider placing fraud alerts or credit freezes with the major credit bureaus.
Be cautious of unsolicited emails or phone calls requesting personal information.

For more information about Assisted Living Pharmacy Service, visit alpsrx.com.

Protect Your Data

A breach notice means your personal details could be circulating far beyond the organization involved. One practical step is continuous monitoring: services such as Identity Defender (included with an ExpressVPN subscription) can automatically check dark-web markets, flag new credit-file activity, and request removal of your information from data-broker sites.

This kind of “early-warning system” can’t undo a breach, but it can help you spot misuse quickly and limit further exposure. ExpressVPN is offering 61% off, risk-free for 30 days, with ID Theft Insurance included and no extra cost for those who sign up for one or two years.