Community Connections Data Breach Affects 20,879 Individuals

Published
August 28, 2025
Updated
July 2, 2026
Community Connections Data Breach Affects 20,879 Individuals
Community Connections

Community Connections, an organization that delivers behavioral health, addiction treatment and supportive housing services, experienced a data breach. The cybersecurity incident compromised the personal and protected health information of at least 20,879 individuals.

On Oct. 21, 2024, Community Connections discovered suspicious activity on its computer systems. An investigation was launched and revealed that an unauthorized actor may have accessed files containing sensitive data.

Due to the volume of data involved, the process of identifying affected individuals took several months. Personal data exposed in the incident included names, addresses, dates of birth, Social Security numbers, driver's license or state ID information, financial information, health insurance details and medical information.

A review was completed on Aug. 22, 2025, and Community Connections began notifying impacted individuals on Aug. 28, 2025. The company also published a Notice of Data Security Incident on its website.

The data breach was reported to the Indiana, Massachusetts, Maine and New Hampshire attorneys general offices on Aug. 27, 2025.

Community Connections’ response

Following the discovery of the breach, Community Connections took immediate steps to secure its systems and prevent future incidents. In addition to state and federal disclosures, the organization is offering affected individuals 12 months of free single-bureau TransUnion Cyberscout credit monitoring services.

If you receive a notice from Community Connections about this breach, you may want to:

  • Sign up for the free credit monitoring services, offered by Community Connections.
  • Monitor your credit reports and financial accounts for any unusual activity.
  • Be alert for phishing emails or phone calls that may use your exposed information.
  • Consider placing a fraud alert or credit freeze with major credit bureaus.

Types of INFORMATION affected
  • Names
    Names
  • Social security numbers
    Social Security Numbers
  • Dates of birth
    Dates of Birth
  • Addresses
    Addresses
  • Government IDs
    Government IDs
  • Medical Information
    Medical Info
  • Financial Info
    Financial Info
  • Affected information types not yet disclosed

Notice Letter

This browser does not support inline PDFs. Please download the PDF to view it: Download PDF

Affected Entity
Community Connections
Consumers Notification date
June 3, 2026
Date of Breach
March 18, 2026
Breach Discovered Date
March 20, 2026
Total People Affected
20879
Information Types Exposed
  • Address
  • Credit/Debit Numbers
  • Date of Birth
  • Drivers Licenses
  • Financial Account
  • Financial Information
  • Full Name
  • Health Insurance Information
  • Medical Information
  • Medical Records
  • Social Security Number
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image