Coos County Family Health Services 2025 Data Breach

Coos County Family Health Services (NH) Community Health Center Breach (2025): 40K Patient Records Including Medical Info & SSN Exposed via RunSomeWarez | ObscureIQ
ObscureIQ Breach Intelligence

Classification Tags

RunSomeWarezRansomware / ExtortionMedicalDate of BirthEmail AddressFull NameMedical DiagnosisMedical Record NumberPhone NumberPhysical Address
High SeverityWebsite / service breach

Coos County Family Health Services (NH) Community Health Center Breach (2025): 40K Patient Records Including Medical Info & SSN Exposed via RunSomeWarez

New Hampshire nonprofit federally qualified health center (FQHC) providing primary, dental, and behavioral-health care.

Verified by ObscureIQ Intelligence
86/100Breach Risk Index
57Data Value
40Market Recency
281dSince Breach

Breach Intelligence Summary

Entity: Coos County Family Health Services · Actor: RunSomeWarez · Sources: 2 references
Attack: Ransomware / Extortion
Profile: Healthcare provider · Community health services · Regional care network · USA
Timeline: Breach (2025-07-09) · Indexed (Sep 30, 2025) · Year (2025)
Exposure: 40K records · 8 fields: Date of Birth, Email Address, Full Name, Medical Diagnosis, Medical Record Number, Phone Number, Physical Address, Social Security Number
Status: Confirmed

Executive Summary

Coos County Family Health Services, a New Hampshire federally qualified health center, detected suspicious activity on July 9, 2025 and confirmed on August 12, 2025 that an unauthorized actor may have accessed or copied files containing PII and PHI. The RunSomeWarez ransomware group claimed responsibility on August 13, 2025. The incident affected 40,185 individuals (35,609 in NH, 1,222 in ME, 365 in MA). Exposed data included names, dates of birth, contact information, Social Security numbers, medical identification numbers, and medical information. It was disclosed to HHS on September 5, 2025; notifications began October 8, 2025.

ObscureIQ assessment: Severe risk. Exposure enables identity theft, medical fraud, insurance abuse, and targeted scams exploiting health conditions or care relationships.

Breach Impact

As a community health center serving a largely rural, underserved population, the exposure of Social Security numbers, dates of birth, medical identification numbers, and medical information creates serious identity-theft and medical-fraud risk for patients who may have fewer resources to respond. The breach affected 40,185 individuals across New Hampshire, Maine, and Massachusetts.

About Coos County Family Health Services

Coos County Family Health Services is a New Hampshire nonprofit federally qualified health center (FQHC) providing primary care, dental, behavioral-health, and community health services to the rural Coos County region and surrounding areas. It maintains patient identity, insurance, billing, and clinical records, often serving underserved populations.

Why They Hold Your Data

Community healthcare providers collect patient identity, contact, insurance, billing, and clinical records tied to primary and regional care delivery.

Recent Developments

Coos County Family Health Services detected suspicious network activity on July 9, 2025; a review completed August 12, 2025 confirmed PII and PHI were involved. The RunSomeWarez ransomware group claimed the attack on August 13, 2025. The breach was disclosed to HHS on September 5, 2025, and notifications to 40,185 individuals began October 8, 2025, with TransUnion/Cyberscout monitoring offered. Reporting indicated this followed a prior ransomware incident; class-action investigations followed.

Data Points Exposed

8 verified field types
Date of Birth High
Email Address
Full Name High
Medical Diagnosis Critical
Medical Record Number
Phone Number
Physical Address High
Social Security Number Critical

Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.

Exploitation & Downstream Threats

Threat Activity:Critical
Primary downstream threats:
  • Medical identity fraud and insurance abuse using medical info and medical ID numbers
  • Identity theft and synthetic identity construction using SSN and DOB
  • Targeted phishing and vishing referencing community-health or clinic care
  • Doxxing and physical targeting from exposed home addresses
  • Heightened harm to underserved patients with fewer recovery resources
Threat vectors:
  • Medical extortion, insurance fraud & discrimination
  • Full identity theft & synthetic identity fraud
  • Name-based social engineering
  • SIM swapping, vishing & SMS phishing
  • Physical stalking, mail fraud & identity verification
  • Home targeting, stalking & physical threat

Threat Actor: RunSomeWarez

RunSomeWarez
Ransomware / Extortion

Attribution and method are based on available breach intelligence. Reported attack vector: Ransomware / Extortion.

Recommended Actions

If you believe your information may be included:

Protect Your ID Documents
Government-ID exposure enables document fraud — monitor and report misuse.
Enable MFA Everywhere
Turn on multi-factor authentication on email first, then financial accounts.
Report & Recover
If you spot misuse, start an official recovery plan and report fraud.

Frequently Asked Questions

What happened in the Coos County Family Health Services breach?

Coos County Family Health Services, a New Hampshire federally qualified health center, detected suspicious activity on July 9, 2025 and confirmed on August 12, 2025 that an unauthorized actor may have accessed or copied files containing PII and PHI. The RunSomeWarez ransomware group claimed…

What data was exposed?

Verified fields include Date of Birth, Email Address, Full Name, Medical Diagnosis, Medical Record Number, Phone Number, Physical Address, Social Security Number.

What should I do if I was affected?

Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.

Sources & References

Every claim on this page is traceable. This breach draws on:

Breach Index
DataBreach.com
Record & field corroboration
ObscureIQ Intelligence
ObscureIQ proprietary analysis
Risk Index scoring & downstream-threat assessment

Protect Yourself

Check If You're Affected

Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.

Get Free Breach Alerts

Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.

High-Risk? Get an Exposure Audit

Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.

Request Consultation