Howard Brown Health Data Breach Affects 8,357 People

On Dec. 19, 2025, Howard Brown Health, a leading Chicago-based LGBTQ+ health and social service provider, disclosed a data breach to the U.S. Department of Health and Human Services (HHS). According to the official HHS breach portal, the incident impacted the personal information of 8,357 individuals in the United States.

At this time, there is no public information indicating whether the breach resulted from external hacking, internal error, or another cause.

The types of information exposed have not yet been detailed in public filings; however, given Howard Brown Health’s role as a healthcare provider, both personally identifiable information (PII) and protected health information (PHI) may have been involved. This could include names, addresses, dates of birth, Social Security numbers, medical records, and insurance details.

The breach has affected 8,357 individuals across the United States. The company has not yet released a public notice of the incident.

Howard Brown Health's response

Howard Brown Health responded by disclosing the breach to federal authorities and initiating the process of notifying affected individuals, as required by law.

Individuals who believe they might be affected by the breach or have received notification from Howard Brown Health are encouraged to:

• Carefully review any correspondence from the company regarding the breach
• Monitor their financial accounts and credit reports for unusual activity
• Consider placing a fraud alert or credit freeze with major credit bureaus
• Contact Howard Brown Health directly for information about available support resources

If any suspicious activity is detected, individuals should report it to the appropriate authorities and take steps to protect their personal and health information.

For further updates, affected individuals can refer to Howard Brown Health’s official website or contact their support services.