Acadian Ambulance Data Breach
Acadian Ambulance Service Breach (2024): 2.5 Million Patient Records Including SSN Exposed
Ambulance, medical transport, and emergency response provider.
Risk Interpretation
Severe risk. This data supports identity theft, medical fraud, insurance abuse, and highly targeted scams that exploit medical vulnerability. Because ambulance providers often serve people in crisis, the downstream harm potential is especially high.
Impact & Downstream Threats
Daixin Team ransomware attackers gained unauthorized access to Acadian's network between June 19 and June 21, 2024, exfiltrating data before Acadian detected the intrusion and isolated affected systems on June 21. Acadian's rapid response — activating backup systems and maintaining dispatch operations — prevented direct impact on patient care. The company reported the breach to HHS on August 20, 2024, disclosing that approximately 2.9 million individuals' protected health information was involve
- Identity theft and synthetic identity construction using government-issued IDs
- SIM swap attacks where phone numbers are present
- Targeted phishing campaigns using exposed email addresses
Threat Vectors
Breach Intelligence
Executive Summary
Acadian Ambulance Service, a Louisiana-based private ambulance company serving roughly 24 million residents across four states, suffered a ransomware attack carried out by the Daixin Team between June 19 and June 21, 2024. The attackers gained unauthorized access to Acadian's network, exfiltrated patient files, and were detected on June 21 when the company isolated affected systems. Daixin Team demanded a $7 million ransom and claimed to have stolen 10 million records. Acadian countered with $173,000 and did not meet the demand. The company reported the breach to the U.S. Department of Health and Human Services on August 20, 2024, disclosing that approximately 2.9 million individuals were affected. The published record count stands at 2.5 million. The exposed data included names, Social Security numbers, dates of birth, phone numbers, medical record numbers, and treatment information collected during patient intake. For many people, contact with an ambulance service happens during a medical emergency, making this an unexpected source of credential exposure. Social Security numbers paired with medical and personal details create conditions for identity theft, medical fraud, and insurance abuse. Scammers can also use medical context to make targeted phishing attempts more convincing. Acadian began notifying affected individuals in November 2024 and offered complimentary credit monitoring through CyEx. A consolidated class-action lawsuit was subsequently filed against the company. Acadian moved to dismiss, arguing plaintiffs had not demonstrated actual harm, and a federal magistrate judge had not yet ruled on that motion as of mid-2025. Affected individuals should monitor their credit reports, review their health insurance statements for unfamiliar claims, and consider placing a fraud alert or security freeze with the major credit bureaus.
About Acadian Ambulance
Acadian Ambulance Service is a Louisiana-based employee-owned private ambulance company founded in 1971, recognized as one of the largest private ambulance services in the United States. The company operates emergency and non-emergency transport, air medical services, and at-home medical care across Louisiana, Texas, Mississippi, and Tennessee, serving a combined population of approximately 24 million residents. Its operations require collecting extensive protected health information at the point of patient care.
Why They Hold Your Data
Medical transportation providers collect patient intake and transport records, including names, SSNs, dates of birth, addresses, and detailed medical information tied to emergency and non-emergency care.
Recent Developments
Acadian Ambulance has continued operating across its service territory following the 2024 breach. The company has engaged in post-incident security improvements. The consolidated class-action litigation and its attempted dismissal remain pending as of early 2026. No major structural changes have been reported beyond the breach response context.
Data Points Exposed
Exposure Categories
Canonical Fields
email_address, full_name, phone_number, ssn
Dark Web Verification
- Dataset containing ~2.5M records identified in breach intelligence sources
- Data indexed and searchable across breach notification platforms
- Source: acadian-ambulance-2024
Recommended Actions
⚠️ Do not assume this is low sensitivity.
Protect Yourself
Check If You’re Affected
Enter your email to check if your data appears in this breach.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed.
High-Risk? Get an Exposure Audit
Full-spectrum exposure audits for executives and public figures.
ObscureIQ Advisory
We combine proprietary dark web access with commercial and restricted breach intelligence to verify exposure and assess real-world risk.
- A public-facing individual
- A high-profile executive
- A customer of Acadian Ambulance
- Or concerned about credential reuse
Powered by the ObscureIQ Breach Intelligence Database
© 2026 ObscureIQ · All Rights Reserved · Data Licensing
Latest from ObscureIQ
What Is Credit Monitoring? And Do I Want It? (Answer: Not Really)
Lock Down Browsers. Wipe Employee Footprints. Win Breach Wars.
Sextortion Spam