.png)
Covenant Health Data Breach Investigation
Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the Covenant Health, Inc. data breach.
If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.
About Covenant Health, Inc.
Covenant Health is a community-owned healthcare system headquartered in Knoxville, Tennessee. It is one of the largest employers in East Tennessee, with more than 11,000 employees and caregivers across over 130 locations. Covenant Health operates 10 hospitals, numerous outpatient clinics, physician offices, rehabilitation centers, oncology facilities and behavioral health programs, serving more than two million patient encounters each year.
While the main operations are based in Tennessee, there is also a separate Covenant Health system in Lubbock, Texas, which serves West Texas and Eastern New Mexico.
What Happened?
On May 26, 2025, Covenant Health discovered unusual activity in its information technology environment. The company quickly secured its systems and brought in third-party cybersecurity experts to investigate. It was determined that an unauthorized party, identified as the Qilin ransomware group, had gained access to Covenant Health’s IT environment as early as May 18, 2025.
The breach affected at least 7,864 people in the United States, including 4,659 residents of Maine. On June 25, 2025, Covenant Health confirmed that sensitive information had been accessed. Written notifications were sent to affected individuals starting July 11, 2025, in accordance with federal and state laws.
Information Exposed:
- Name
- Address
- Date of birth
- Social Security number
- Dates of treatment
- Diagnoses
- Health insurance information
- Medical record number
- Treatment information
- Type of treatment
The Qilin ransomware group claimed responsibility for the attack and posted about the breach on the dark web on June 24, 2025.
Your Rights and Next Steps
If you received a notification letter from Covenant Health, it means your personal information may have been compromised. Even if you have not yet seen any fraudulent activity, it is important to take steps to protect yourself. Covenant Health is offering a complimentary one-year membership to Experian IdentityWorksSM, which provides credit monitoring and identity theft protection.
Here are some actions to consider:
- Enroll in the free Experian IdentityWorksSM service using the instructions provided in the notification letter
- Review your credit reports from all three major credit bureaus (Equifax, Experian, TransUnion)
- Monitor your health insurance statements for any unauthorized services
- Consider placing a fraud alert or security freeze on your credit file
- Report any suspected identity theft to the Federal Trade Commission and your state attorney general’s office
- Contact law enforcement and file a police report if you believe you are a victim of identity theft
Lawyers are ready to help individuals who have been impacted by this breach understand their rights and pursue possible claims for compensation.
You May Be Entitled to Compensation
If you were affected by the Covenant Health data breach, you may be eligible to join a lawsuit and seek compensation for the exposure of your sensitive information. Lawyers are actively investigating claims and can help guide you through the process.
To find out if you qualify, complete the below form to join the lawsuit and protect your rights.
.svg)