.png)
Mount Rogers Data Breach Affects Patients and Employees
Names
Social Security Numbers
Dates of Birth
Addresses
Government IDs
Medical Info
Financial Info
On April 29, 2025, Mount Rogers Community Services, a Virginia-based mental health care provider, discovered it had fallen victim to a ransomware attack. An investigation revealed that the data breach began on or around April 27, 2025, and lasted until April 29, 2025.
The ransomware group known as INC RANSOM publicly claimed responsibility for the attack, posting about the data breach on the dark web on June 10, 2025. The attackers stated they had acquired data belonging to Mount Rogers Community Services and threatened to release it if their demands were not met.
The cybersecurity incident compromised both personally identifiable information (PII) and protected health information (PHI). Exposed information may include the following patient information: Name, Social Security number, address, zip code, date of birth, diagnosis/conditions, medications, dates of service and other treatment information.
The data breach also included some employment related files and the following employee and employee dependent information may have been exposed: Names, addresses, dates of birth, driver’s license numbers, Social Security numbers, medical information shared for employment purposes, and/or benefits enrollment information.
Mount Rogers Community Services notified the Massachusetts Attorney General's office on June 13, 2025 and published a Notice of Cyber Incident on its own website. The data breach was disclosed to the Vermont Attorney General's office on June 16, 2025 and the New Hampshire Attorney General's office on June 17, 2025.
Mount Rogers’ response
Mount Rogers Community Services initiated an investigation and contacted law enforcement. Affected individuals were notified by mail on June 13, 2025.
If you receive a data breach notification from Mount Rogers Community Services, you may want to:
- Sign up for the free identity monitoring services through Kroll, paid for by Mount Rogers.
- Monitor your credit reports and financial accounts for any unusual activity.
- Be alert for phishing emails or phone calls that may use your exposed information.
- Consider placing a fraud alert or credit freeze with major credit bureaus.
For more information, visit the Mount Rogers Community Services website.
Protect Your Data
A breach notice means your personal details could be circulating far beyond the organization involved. One practical step is continuous monitoring: services such as Identity Defender (included with an ExpressVPN subscription) can automatically check dark-web markets, flag new credit-file activity, and request removal of your information from data-broker sites.
This kind of “early-warning system” can’t undo a breach, but it can help you spot misuse quickly and limit further exposure. ExpressVPN is offering 61% off, risk-free for 30 days, with ID Theft Insurance included and no extra cost for those who sign up for one or two years.
Data Breach Settlements
.webp)
.webp)
.webp)
.webp)
.webp)
.webp)
.webp)
Subscribe to our weekly class actions newsletter.
.svg)