Alvaria

Alvaria is a software provider that was formed through a merger of two technology entities. Its headquarters are located in the United States of America.

On March 9, 2023, Alvaria suffered a ransomware attack that compromised its IT infrastructure. The intrusion led to unauthorized access to sensitive patient data affiliated with Shasta Community Health Center. Exposed information included names and protected health details. Following the breach, Alvaria secured its systems and engaged third‑party cybersecurity experts to investigate. After confirming the scope of the compromised records, the company notified the affected individuals.

On November 28, 2022, Alvaria experienced a Hive ransomware attack that resulted in unauthorized access to extensive employee information. The compromised data comprised names, Social Security numbers, passport details, financial account data, health insurance information, and tax‑related records. The breach was identified after attackers leaked non‑consumer data on a dark web site. This leakage prompted a further investigation that confirmed the scope of the employee data exposure. Alvaria subsequently notified the affected employees of the incident.

In both incidents, Alvaria took responsibility for breach notifications, even when it served as the initial attack vector. For the 2023 event, the company managed notifications on behalf of Shasta Community Health Center despite being the source of the intrusion. These episodes illustrate how third‑party vendor vulnerabilities can affect the security of sensitive data in sectors such as healthcare and employment. Alvaria’s response included securing systems, launching investigations with external experts, and communicating with impacted parties.