Century Vision Data Breach
Century Vision Eye Care Provider Breach (2025): 42K Patient Records Including SSN Exposed
Eye care and vision services provider.
Risk Interpretation
Exposure enables identity theft, billing fraud, and scams using care or purchase pretexts. Vision-related treatment data may also create privacy concerns.
Impact & Downstream Threats
Direct institutional cost to Century Vision Global has been moderated by the company's lower public profile, but the impact extends across the affiliated clinics that share its centralized systems. As a healthcare-acquisition company supporting affiliated practices, a compromise at the central support layer creates simultaneous regulatory exposure for each affected clinic under the U.S. Health Insurance Portability and Accountability Act, including potential breach-notification, fine, and resolu
- Identity theft and synthetic identity construction using government-issued IDs
- SIM swap attacks where phone numbers are present
- Targeted phishing campaigns using exposed email addresses
- Doxxing risk from physical address exposure
Threat Vectors
Breach Intelligence
Executive Summary
A ransomware attack attributed to the Abyss group surfaced on February 2, 2025 affecting Century Vision Global, a U.S.-based eye-care acquisition and management services organization, along with three affiliated clinic websites: independenceeye.com, kocheye.com, and prairieeyecenter.com. Century Vision Global serves as the parent management services provider for these clinics, which means a single compromise at the central support layer cascades into every affiliated practice.\n\nThe exposed data covered approximately 41,800 records, including names, email addresses, phone numbers, home addresses, and Social Security numbers. Because the affected entities are healthcare providers, additional protected health information including treatment, diagnostic, and insurance records may also have been compromised, although the published field set focuses on identity and contact data. No payment-card or banking exposure has been publicly reported.\n\nFor affected patients, the practical risk is identity theft and medical-identity fraud. The combination of name, home address, and Social Security number is a strong base for fraudulent credit applications, tax-return fraud, and insurance abuse. Anyone notified by Century Vision Global, Independence Eye, Koch Eye Associates, or Prairie Eye Center should treat their Social Security number as exposed, freeze credit at all three U.S. bureaus, and remain alert to suspicious medical billing or insurance correspondence. People should also be cautious of any unsolicited contact referencing past eye-care appointments or treatment, since attackers can use such pretexts to extract additional information.
About Century Vision
Century Vision Global is a U.S.-based vision care acquisition and clinical support company. The privately held firm focuses on acquiring eye-care practices and providing centralized non-clinical services such as IT, billing, and operations support to the clinics in its network. As of recent reporting it employs around 400 people and reports approximately $92 million in annual revenue. Affiliated practices in the Century Vision Global network include independenceeye.com, kocheye.com, and prairieeyecenter.com, with operations spanning multiple U.S. states.
Why They Hold Your Data
Vision-care providers collect customer or patient identity, contact, prescription, appointment, billing, and service records tied to optical products and eye-care services.
Recent Developments
The breach surfaced when the Abyss ransomware group listed Century Vision Global and three affiliated eye-care websites on its dark-web leak page on February 2, 2025. Century Vision Global has not issued a detailed public statement about the incident and has not appeared on the U.S. Department of Health and Human Services public breach portal under that exact name as of early 2026. One affiliated practice, Koch Eye Associates of Rhode Island, was named separately in mid-2025 in connection with another Abyss-linked exfiltration claim of approximately 313 GB of data, suggesting either a delayed disclosure of the same incident or a follow-on attack.
Data Points Exposed
Exposure Categories
Canonical Fields
email_address, phone_number, physical_address:home, ssn
Dark Web Verification
- Dataset containing ~42K records identified in breach intelligence sources
- Data indexed and searchable across breach notification platforms
- Source: four-eye-clinics-2025
Recommended Actions
⚠️ Do not assume this is low sensitivity.
Protect Yourself
Check If You’re Affected
Enter your email to check if your data appears in this breach.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed.
High-Risk? Get an Exposure Audit
Full-spectrum exposure audits for executives and public figures.
ObscureIQ Advisory
We combine proprietary dark web access with commercial and restricted breach intelligence to verify exposure and assess real-world risk.
- A public-facing individual
- A high-profile executive
- A customer of Century Vision
- Or concerned about credential reuse
Powered by the ObscureIQ Breach Intelligence Database
© 2026 ObscureIQ · All Rights Reserved · Data Licensing
Latest from ObscureIQ
What Is Credit Monitoring? And Do I Want It? (Answer: Not Really)
Lock Down Browsers. Wipe Employee Footprints. Win Breach Wars.
Sextortion Spam