Waveny LifeCare Data Breach Exposes Sensitive Patient Info & SSNs

Published
October 13, 2025
Updated
July 9, 2026
Waveny LifeCare Data Breach Exposes Sensitive Patient Info & SSNs
Waveny Lifecare Network
Affected by the data breach? You may be entitled to compensation. Submit a claim today.

On May 28, 2025, Waveny LifeCare Network, a nonprofit healthcare provider based in New Canaan, Connecticut, experienced a significant data breach that disrupted its network systems.

The incident was identified as a ransomware attack carried out by the Qilin group, a known cybercriminal organization. Shortly after the breach, Qilin claimed responsibility and posted about the attack on the dark web on June 12, 2025, stating they had obtained sensitive data from Waveny.

The breach exposed a wide range of both personally identifiable information (PII) and protected health information (PHI) including first and last names, addresses, dates of birth, admission and discharge dates, date of death, telephone numbers, email addresses, Social Security numbers, medical record numbers, patient account numbers, facial photographic images, laboratory test results, medical imaging results, driver’s license numbers, electronic health records, health insurance account or policy numbers, payment information, Medicare or Medicaid information and financial account numbers.

The incident was confirmed in a public notice posted by Waveny LifeCare Network, which can be reviewed in detail on their official data breach notification.

Disclosures were made to state agencies in Maine, Massachusetts and Vermont.

A total of 27,113 individuals were impacted, including 174 residents of Massachusetts, 19 of Maine and nine of Vermont.

Waveny Lifecare Network's response

For those who may be affected, Waveny has established a dedicated assistance line at 833-353-3395, available Monday through Friday from 9 a.m. to 9 p.m. Eastern, excluding major U.S. holidays. Individuals can also contact Waveny in writing at 3 Farm Road, New Canaan, CT 06840.

Given the nature of the attack and the types of information exposed, it is important for affected individuals to monitor their credit reports, financial statements and explanation of benefits forms for any unfamiliar activity.

Waveny recommends placing a fraud alert or credit freeze with the major credit reporting agencies: TransUnion, Experian, Equifax and Innovis. Additional guidance on protecting against identity theft is available from the Federal Trade Commission at identitytheft.gov.

SUBMIT YOUR CLAIM TO THE LAW FIRM HANDLING THIS INVESTIGATION

Types of INFORMATION affected
  • Names
    Names
  • Social security numbers
    Social Security Numbers
  • Dates of birth
    Dates of Birth
  • Addresses
    Addresses
  • Government IDs
    Government IDs
  • Medical Information
    Medical Info
  • Financial Info
    Financial Info
  • Affected information types not yet disclosed

Notice Letter

This browser does not support inline PDFs. Please download the PDF to view it: Download PDF

Consumers Notification date
June 2, 2026
Date of Breach
May 28, 2025
Breach Discovered Date
March 24, 2026
Total People Affected
27113
Information Types Exposed
  • Address
  • Credit and last names in combination with address
  • Credit/Debit Numbers
  • Date of birth
  • Drivers Licenses
  • Financial Account
  • Financial Account Codes
  • Full name
  • Government-issued identification card

-

CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image