Travere Therapeutics Data Breach Exposes Social Security Numbers

On June 19, 2025, Travere Therapeutics became aware of phishing emails originating from a Travere employee email address. An investigation determined that an unauthorized actor gained access to an internal employee email account on June 17, 2025.

The investigation also revealed that the attackers may have accessed sensitive data including names, dates of birth, addresses, Social Security numbers, phone numbers and email addresses. The scope of exposed information, particularly Social Security numbers, makes this cyberattack especially serious, as such data can be used for identity theft and other forms of fraud.

Travere Therapeutics began notifying affected individuals by mail on Oct. 20, 2025. The total number of current and former employees impacted by the data breach has not been publicly disclosed.

The breach notification was made available on the Massachusetts Attorney General’s portal on Oct. 24, 2025 and was also disclosed to the New Hampshire Attorney General's office on Oct. 27, 2025. Impacted individuals includes 50 Massachusetts residents and three in New Hampshire.

Travere Therapeutics' response

In response to the breach, Travere Therapeutics, Inc. has taken several steps to support those affected. The company is offering 24 months of complimentary identity protection and credit monitoring services through Epiq, a leading identity monitoring provider.

These services include three-bureau credit monitoring with alerts, monthly VantageScore 3.0 credit scores, Social Security number monitoring, dark web monitoring, change of address monitoring, credit protection tools, personal information protection, identity restoration assistance, lost wallet support and up to $1 million in identity theft insurance.

Affected individuals are encouraged to enroll in the complimentary services as soon as possible. Instructions and unique activation codes were provided directly to those impacted. Travere has also set up a dedicated toll-free support line at 855-720-3024, available Monday through Friday from 9 a.m. to 9 p.m. Eastern, to answer questions related to the incident and the provided services.

In addition to enrolling in identity protection services, individuals should remain vigilant by regularly reviewing account statements and credit reports for any unauthorized activity. Travere’s notice also advises affected parties to consider placing a security freeze or fraud alert on their credit files and to promptly report any suspicious activity to law enforcement or the Federal Trade Commission.