Community Connections Data Breach Affects 20,876 Individuals

Community Connections, an organization that delivers behavioral health, addiction treatment and supportive housing services, experienced a data breach. The cybersecurity incident compromised the personal and protected health information of at least 20,876 individuals

On Oct. 21, 2024, Community Connections discovered suspicious activity on its computer systems. An investigation was launched and revealed that an unauthorized actor may have accessed files containing sensitive data.

Due to the volume of data involved, the process of identifying affected individuals took several months. Personal data exposed in the incident included names, addresses, dates of birth, Social Security numbers, driver's license or state ID information, financial information, health insurance details and medical information.

A review was completed on Aug. 22, 2025 and Community Connections began notifying impacted individuals on Aug. 28, 2025. The company also published a Notice of Data Security Incident on its website.

The data breach was reported to the Massachusetts, Maine and New Hampshire Attorney Generals' offices on Aug. 27, 2025.

Community Connections’ response

Following the discovery of the breach, Community Connections took immediate steps to secure its systems and prevent future incidents. In addition to state and federal disclosures, the organization is offering affected individuals 12 months of free single-bureau TransUnion Cyberscout credit monitoring services.

If you receive a notice from Community Connections about this breach, you may want to:

• Sign up for the free credit monitoring services, offered by Community Connections.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

For more details about the organization, visit the Community Connections website.