CEI Vision Partners Data Breach Exposes Sensitive Info

CEI Vision Partners, a healthcare organization that operates a network of eye care practices, experienced a major data breach. On May 26, 2024, CVP detected suspicious on its network. An investigation was launched and it was determined that a cybercriminal accessed certain systems between May 24, 2024 and May 27, 2024.

A review was completed on June 10, 2025 and revealed that the data breach compromised both personally identifiable information (PII) and protected health information (PHI). Exposed information includes names, contact information, dates of birth, Social Security numbers, health insurance information, medical records and financial account information.

The breach is considered severe due to the exposure of both financial and health-related data, which can put affected individuals at risk for identity theft and medical fraud. The total number of affected individuals has not been released, but is believed involve thousands of patients from multiple CEI Vision Partners eye care practices.

The breach was disclosed to the Montana Attorney General's office on Aug. 8, 2025 and the Vermont Attorney General's office on Aug. 13, 2025. CEI Vision Partners is notifying affected individuals by mail.

The cybersecurity incident was also reported to the Massachusetts Attorney Generals office on Aug. 14, 2025. Impacted patients include seven Massachusetts residents and two in Vermont.

CEI Vision Partners's response

In addition to required state and federal disclosures, CEI Vision Partners is offering 12 months of free Experian IdentityWorks Credit 3B identity monitoring services to impacted individuals.

If you receive a notice from CEI Vision Partners or your eye care provider about this breach, you may want to:

• Sign up for the free identity monitoring services, offered by CVP.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

More information about the eye care organization can be found on the EyeCare Partners website.