Catholic Health: This Isn’t Just a Data Leak. It’s a Wake-Up Call.

Imagine waking up one morning and seeing charges made to your card that you didn’t make because the wrong person got access to your information.

Catholic Health, based out of New York, had a data leak from September 19th to November 5th, 2024, putting 500,000 patients' information at risk. 

Let's Go Over What Happened

On May 9th, 2025, Catholic Health informed the public of a leak in their system. The breach had been going on from September 19 to November 5th, until it was discovered by the company in November 2025. 

While the breach involved Catholic Health, it was experienced by their HIPAA business associate, Serviceaide, Inc., a third-party vendor providing services on their behalf.

Here is What Got Out - With Your Name All Over It 

The following information was taken, and it is not looking good:

• Full names
• Social security numbers
• Date of birth
• Medical record numbers
• Patient account numbers
• Medical information
• Health insurance information
• Prescription and treatment information
• Clinical information
• Healthcare provider details
• Email/usernames
• Passwords

Why Is This Bad?

So what is so bad about this information being out there? Well, it could lead hackers to do any of the following and more:

• Open credit cards and loans in your name
• Hijack your medical identity to get treatments or prescriptions
• Access your email or other accounts using stolen passwords
• File fake insurance claims using your health info
• Sell your personal data on the dark web
• Send hyper-targeted phishing emails that look real
• Ruin your credit and leave you cleaning up the mess for years

So What Now? 

Let's talk about some ways to protect yourself if there is a chance you're affected:

• Freeze your credit with the major bureaus (Experian, Equifax, TransUnion)
• Change your passwords, especially for any reused logins
• Set up fraud alerts with your bank and credit card companies
• Review medical records for treatments or prescriptions you didn’t authorize
• Sign up for credit monitoring if it’s not already offered
• Keep an eye on your inbox for suspicious emails or login alerts
• Reach out to Morgan & Morgan. We specialize in fighting for victims of data breaches like this.

What if I don’t see anything wrong right now?

You still could be at risk; stolen data is often sold and used months or even years later.

What if my credit is already damaged?

You may be entitled to compensation or legal help. Don’t wait until it gets worse.

Take a look here to see the breach notice.

You didn't ask for this. But you can fight back. This is not just an inconvenience, it is a threat to your future. Contact us here at Morgan and Morgan for help, your future is worth protecting.