PCA Data Breach: 3 Maine Residents Impacted

On or about July 25, 2025, Philadelphia Corporation for Aging (PCA) detected suspicious activity within its internal network. signaling a potential cybersecurity incident. An investigation found that between July 10 and July 25, 2025, an unauthorized actor may have accessed and copied sensitive information from PCA’s systems.

PCA completed a review of the impacted data on Oct. 23, 2025 and began notifying affected individuals by mail on Nov. 4, 2025. Compromised information may include names, addresses, dates of birth, Social Security numbers, medical information and health insurance information.

The breach was formally disclosed to the Maine Attorney General’s office on Nov. 4, 2025.. According to the report, three Maine residents were affected, however the total number of individuals impacted nationwide has not been specified.

Philadelphia Corporation for Aging's response

In response to the breach, PCA took steps to secure its systems, engaged external cybersecurity experts and notified law enforcement. In addition to required state and federal disclosures, the organization is offered affected individuals 12 free months of TransUnion Cyberscout credit monitoring, fraud assistance and remediation services.

If you receive a notice from PCA about this breach, you may want to:

• Sign up for the free credit monitoring services, offered by the company.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

Philadelphia Corporation for Aging also established an assistance line for individuals with questions at 1-833-647-0358, Monday through Friday from 8:00 a.m. to 8:00 p.m. Eastern Time.