Cyber Incident Victim: Wedge Recovery Centers

On June 25, 2021, Wedge Recovery Centers, a Philadelphia-based mental health service provider, detected suspicious activity within its computer network indicating unauthorized access. The organization immediately blocked further intrusion attempts and initiated an investigation to determine the breach's scope and impact. Forensic analysis confirmed an unauthorized actor had infiltrated the network on the same day of detection, though investigators found no evidence suggesting any compromised information was actually or attemptedly misused. A comprehensive review of potentially affected data revealed that exposed files contained patient names, addresses, dates of birth, Social Security numbers, treatment details, and health insurance information. This review remained ongoing at the time of public disclosure. The breach ultimately impacted 29,000 individuals, as subsequently reported to the Department of Health and Human Services' Office for Civil Rights.

In response to the incident, Wedge Recovery Centers implemented additional technical security safeguards designed to prevent similar breaches. The organization also initiated reviews and enhancements of existing policies and procedures to strengthen privacy and security measures. Affected individuals received mailed notifications advising vigilance against identity theft and fraud, with specific recommendations to monitor account statements, explanation of benefits documents, and credit reports for suspicious activity. The provider did not publicly disclose whether law enforcement was engaged or whether third-party cybersecurity firms assisted in the investigation. No ransomware deployment, data exfiltration evidence, or financial motives were mentioned in the disclosure. The breach notification emphasized containment of the incident to the June 25 intrusion date without indicating prior or subsequent unauthorized access periods.