Kendal Corporation, a not-for-profit senior care system headquartered in Newark, Delaware, reported a data breach to the Attorney General of New Hampshire, indicating that sensitive personal information might have been accessed by an unauthorized actor. The breach was discovered on June 30, 2024, when unusual activity was identified on its computer network. Following this discovery, Kendal launched an investigation to determine the extent of the incident. The investigation revealed that the breach occurred between June 26 and June 30, 2024, potentially compromising sensitive data stored on Kendal’s network.
The information at risk included details related to Kendal at Home members, though the specific types of personal data exposed have not been publicly disclosed. Under state reporting guidelines, personal information could include names, Social Security numbers, driver’s license or other government ID numbers, and financial account details such as credit or debit card numbers with accompanying access codes. Kendal has conducted a detailed review to identify the impacted individuals and the nature of the compromised data. However, it remains unclear how much and what type of information was accessed.
In response to the breach, Kendal began notifying affected individuals on September 11, 2024. These notifications included a detailed explanation of the information that may have been compromised. To support those impacted, Kendal is offering complimentary credit monitoring services, aiming to mitigate potential risks associated with identity theft or financial fraud. The organization emphasized its commitment to providing assistance and resources to those whose information was potentially exposed.
Kendal’s proactive approach to addressing the breach highlights its commitment to transparency and accountability. The organization has taken steps to enhance its security measures and prevent similar incidents in the future. As a senior care provider with a long history of serving communities across the United States, Kendal continues to work diligently to safeguard its systems and protect the sensitive information of its members and affiliates. The incident underscores the importance of robust cybersecurity measures in the senior care industry.
Reference:
