
Operation PAR, Inc. Breach
Jul 2, 2025
88,313 rows
Added on Sep 17, 2025
What happened in the Operation PAR, Inc. Breach?
DataBreach.com Team · September 16th 2025, 8:00 pm EDT
Breach Overview
Operation PAR, Inc. - a Florida-based nonprofit addiction-treatment provider - reported a data security incident discovered on June 10, 2025. The WorldLeaks ransomware group claimed responsibility, boasting of nearly 900,000 stolen files. Forensics suggest the organization’s cloud-based EHR wasn’t compromised, but internal systems holding patient and staff data were exposed.
Our parse of the leaked dataset confirms the scope and sensitivity.
---
Exposed Data
- 88,000 addresses
- 13,200 phone numbers
- 10,400 Social Security numbers (SSNs)
- 9,000 email accounts
---
Threat Actor
- Group: WorldLeaks (ransomware/blackmail group)
- Method: Network intrusion → data theft → extortion listing (July 2025)
---
Risks to Victims
- Phishing & scams: With addresses and phones widely exposed, targeted SMS and mail fraud are likely.
- Identity theft: SSNs make this a classic identity-risk case.
- Healthcare fraud: Stolen data may be used to file false insurance claims.
---
Legal & Regulatory Response
- Multiple class-action firms (Strauss Borrelli, Levi & Korsinsky, Dapeer Law) are investigating potential claims.
- As of September 2025, no class action is formally filed.
- PAR has posted a Data Security Incident Notice and is offering a help line: 877-495-0947.
---
What Operation PAR Says
“There is no evidence of fraud or misuse so far. We are notifying potentially affected individuals directly.”
(Operation PAR statement, June 2025)
---
What to Do If Affected
- Freeze your credit at Experian, Equifax, and TransUnion.
- Monitor Explanation of Benefits (EOBs) from your insurer for unfamiliar claims.
- Use free credit monitoring if PAR offers it.
- Stay alert for smishing and robocalls - attackers already hold phone numbers.
Recent News











Ho-ly G*t: TeamPCP Claims Theft of Thousands of GitHub Internal Repositories
a month ago

17M Nissan cars impacted by large ransomware attack
3 months ago

Iranian hackers just used Stryker’s own security tools to delete itself
4 months ago

Massive Odido cyberattack leaks customer IBANs and government IDs
4 months ago

Figure breach proves blockchain cannot save us from human error
5 months ago

Substack notifies users of data breach affecting nearly 700,000 accounts
5 months ago

UPenn claims "Under 10" victims in 1.2M breach involving donors like Trump and Musk
5 months ago

How 0apt is Using Random Noise to Fake a Ransomware Empire
5 months ago

Hackers Are Now Using Global-e Data to Target Ledger Owners at Their Home Addresses
6 months ago

Meta Denies Instagram Breach After Password Reset Panic
6 months ago

Why the 2.3 Million Wired Record Breach Is a Nightmare for Condé Nast
6 months ago