Survival Flight Data Breach Exposes Patient PII and PHI

Survival Flight, Inc., a leading emergency medical transportation provider, recently experienced a data breach that exposed sensitive patient and customer information. The incident, which was discovered on July 17, 2025, has so far affected 14 Massachusetts residents.

The breach was the result of unauthorized access to Survival Flight’s network by a threat actor known as Worldleaks, who posted about the incident on the dark web on Sept. 12, 2025.

The attackers claimed to have exfiltrated data from the company’s systems and subsequently leaked it on a Tor network. Survival Flight confirmed that an unauthorized third party gained access to a limited subset of files, containing both personally identifiable information (PII) and protected health information (PHI).

The types of information exposed include names, addresses, dates of birth, Social Security numbers, financial account details, medical records, patient account numbers, health insurance information and specific medical treatment details.

The company has published a notice of the data security incident on its website and filed a disclosure with the Massachusetts Office of Consumer Affairs and Business Regulation.

Survival Flight's response

To support those affected, Survival Flight is offering complimentary single-bureau credit monitoring and fraud assistance services through Cyberscout, a TransUnion company. Impacted individuals can enroll in these services for 24 months, which include credit file monitoring and alerts.

Enrollment instructions and a unique code were provided in the notification letter. Affected individuals are encouraged to sign up for these services within 90 days of receiving their notification.

Survival Flight also recommends that individuals remain vigilant by reviewing their credit reports, monitoring account statements and considering placing fraud alerts or security freezes with the major credit bureaus.