Friendship House Data Breach Disclosure Follows Ransomware Attack

On February 5, 2025, Friendship House, Inc. discovered a major cybersecurity incident impacting its computer systems. The organization learned that certain files from its network had been copied and removed following a ransomware attack that encrypted parts of its infrastructure.

Shortly after, the MEDUSA ransomware group claimed responsibility for the breach, posting on its dark web portal on February 25, 2025, that it had obtained sensitive organizational data and intended to publish it within a week. The group also released sample screenshots as proof of access.

The breach was officially disclosed to the U.S. Department of Health and Human Services on April 4, 2025.

At this time, Friendship House has not yet confirmed the specific types of information exposed. However, given the nature of the organization and the ongoing investigation, it is possible that both personally identifiable information (PII) and protected health information (PHI) may be involved.

The severity of this breach is heightened by the fact that attackers gained unauthorized access, exfiltrated data, and encrypted critical systems, all while threatening public exposure of sensitive information.

The involvement of the MEDUSA ransomware group, known for targeting healthcare and nonprofit organizations, underscores the risk of identity theft or fraud for those whose data may have been compromised.

Friendship House's response

Those affected are encouraged to remain vigilant by monitoring account statements and reviewing free credit reports for any suspicious activity. The organization has made available detailed instructions on how to place a fraud alert or credit freeze with the major credit bureaus—Equifax, Experian, and TransUnion.

These steps can help prevent unauthorized use of personal information, especially in the aftermath of a ransomware attack. Additionally, individuals can reach out to Friendship House for more information via email at dataevent@thefriendshiphouse.net or by mail at their Grand Island, NE address. The full notice and recommended steps are accessible in Friendship House’s official cyber event notice.

Given the nature of the attack and the threat of data publication by the MEDUSA group, it is especially important for those who may have been affected to take advantage of these protective resources and remain alert for any signs of misuse of their information.