.png)
NCBHS Data Breach Exposes Sensitive Information
North Central Behavioral Health Systems (NCBHS), a nonprofit provider of mental health and substance use services in Illinois, has recently experienced a data breach. Although the investigation is ongoing, NCBHS has shared details about the incident on its website.
The organization discovered unauthorized access to a single email account in December 2025.
On or around Dec. 2, 2025, NCBHS identified unauthorized activity in one employee’s email account. The organization enacted its incident response protocols, secured the compromised account by ending all active sessions, and reset the account’s credentials. External cybersecurity experts were engaged to investigate the incident further.
The investigation so far has determined that an unauthorized individual gained access to this single email account. At this time, there is no evidence that any personal information has been or will be misused. However, NCBHS is conducting a thorough review of the contents of the email account to determine which individuals and what types of information may have been involved.
The specific number of affected individuals has not yet been disclosed, as the review is ongoing. NCBHS serves between 3,000 and 10,000 clients annually, so the scope could be significant depending on the results of the investigation.
Though the exact exposed data elements involved have not been detailed yet, they may include personally identifiable information (PII) such as names, contact details, and possibly dates of birth, as well as protected health information (PHI) related to mental health or substance use services.
North Central Behavioral Health's response
NCBHS is in the process of mailing notification letters to those whose information may have been affected, provided it has their current addresses. These letters will include more information about the incident, complimentary credit monitoring and identity protection services, and steps individuals can take to protect themselves.
Affected individuals are encouraged to remain vigilant for signs of identity theft or fraud. Reviewing bank and other financial statements regularly is recommended.
Additional guidance on protecting against identity theft is available from the Federal Trade Commission.
Individuals with questions about the incident can contact NCBHS by emailing Privacy@NCBHS.org.
Names
Social Security Numbers
Dates of Birth
Addresses
Government IDs
Medical Info
Financial Info- Affected information types not yet disclosed
Data Breach Settlements
.webp)
.webp)
.webp)
.webp)
.webp)
.webp)
.webp)
What to Read Next
Subscribe to our weekly class actions newsletter.
.svg)