.png)
Heart to Heart Data Breach Affects 19,034: SSNs Exposed
Names
Social Security Numbers
Dates of Birth
Addresses
Government IDs
Medical Info
Financial Info
On March 18, 2025, Heart to Heart Hospice Holdings, LLC ("Heart to Heart") publicly disclosed that it experienced a cybersecurity incident impacting its IT systems. Upon discovery, the company engaged third-party cybersecurity specialists to investigate, contain, and remediate the breach.
The investigation revealed that an unauthorized party gained access to sensitive personal information belonging to patients. Specifically, the data exposed included patient names, addresses, Social Security numbers, medical treatment details, and health insurance information.
A disclosure to the HHS breach portal states 19,034 Americans had their PHI affected. In Texas alone, 10,835 individuals were affected by this breach with PII & PHI data exposed like social security numbers and medical information.
Heart to Heart's response
Following the discovery of the breach, Heart to Heart Hospice immediately took steps to contain and remediate the cybersecurity incident. The company engaged cybersecurity experts to investigate the breach and determine the extent of the compromised data.
Heart to Heart Hospice has notified affected individuals, or in most cases, the families of deceased patients, via U.S. Mail. Additionally, the company has made available a dedicated call center for questions and concerns. Individuals can contact the call center at 1-833-998-5744, available from 8:00 am to 8:00 pm (EST), Monday through Friday, excluding holidays.
Heart to Heart has also enhanced its data security practices to prevent similar incidents in the future. The company recommends that affected individuals carefully review any statements received from healthcare providers or health insurers to ensure accuracy. More information about the incident is available in the official notice posted on Heart to Heart Hospice's website.
The breach has also been reported to the Texas Attorney General's office, and details of the incident can be found on the Texas Attorney General's Data Security Breach Reports page.
For more information about Heart Hospice Holdings, visit the Heart to Heart Hospice website.
Protect Your Data
A breach notice means your personal details could be circulating far beyond the organization involved. One practical step is continuous monitoring: services such as Identity Defender (included with an ExpressVPN subscription) can automatically check dark-web markets, flag new credit-file activity, and request removal of your information from data-broker sites.
This kind of “early-warning system” can’t undo a breach, but it can help you spot misuse quickly and limit further exposure. ExpressVPN is offering 61% off, risk-free for 30 days, with ID Theft Insurance included and no extra cost for those who sign up for one or two years.
Data Breach Settlements
.webp)
.webp)
.webp)
.webp)
.webp)
.webp)
.webp)
Subscribe to our weekly class actions newsletter.
.svg)