SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Breaches

238,000 Impacted by Bell Ambulance Data Breach

Hackers stole personal information such as names, Social Security numbers, and driver’s license numbers.
Healthcare data breach

Ambulance services provider Bell Ambulance is notifying nearly 238,000 individuals that their personal, financial account, medical, and health insurance information was compromised in a February 2025 data breach.

The Milwaukee, Wisconsin-based healthcare organization detected the network intrusion on February 13, 2025, and disclosed the incident on April 14, roughly a month after the Medusa ransomware gang claimed responsibility for it. Bell Ambulance said at the time that 114,000 people had been impacted. 

This week, Bell Ambulance notified the Maine Attorney General’s Office that hackers had access to its network between February 7 and February 14, 2025.

The organization told the Maine AGO that it has sent notification letters to 237,830 individuals who were affected by the data breach.

A copy of the notification letter submitted to the Maine AGO shows that Bell completed its investigation into the compromised information on February 20, 2026.

The compromised information, the organization said last year, includes names, Social Security numbers, dates of birth, and driver’s license numbers, along with financial account and medical and health insurance information.

Advertisement. Scroll to continue reading.

“In response to this event, Bell secured its network, reset passwords, secured all accounts, and conducted a full investigation into the incident,” the organization said in its incident notice.

Bell Ambulance is providing the impacted individuals with 12 months of free credit monitoring and identity protection services and is encouraging them to remain vigilant of potential fraud and identity theft incidents.

In March last year, the Medusa ransomware group claimed the theft of 219.50 GB of data from Bell Ambulance. The threat actor has since published the allegedly stolen data, which suggests that the organization did not pay a ransom.

Related: Michelin Confirms Data Breach Linked to Oracle EBS Attack

Related: Thousands Affected by Ericsson Data Breach

Related: New LexisNexis Data Breach Confirmed After Hackers Leak Files

Related: 1.2 Million Affected by University of Hawaii Cancer Center Data Breach

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing for the latest cybersecurity threats, trends, and expert insights.

More from

Latest News

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Webinar: Third-Party Risk in Practice
June 4, 2026

Organizations are investing heavily in third-party risk management, but breaches, delays, and blind spots continue to persist. Join this live webinar as we examine the gap between how organizations think their third-party risk programs are performing and what’s actually happening in practice.

Register

Virtual Roundtable: CISO Forum 2026 Mid-Year Review
June 10, 2026

Explore how attackers are using AI to scale threats and how security teams can respond with AI-driven defenses. Protecting against unmonitored use of generative AI (Shadow AI) in business units and building and enforcing AI governance frameworks.

Register

People on the Move

Opal Security has appointed CPO, CTO, VP of Field Engineering, VP of Marketing, and Head of Product and Solutions Marketing.

The Department of the Air Force has appointed Ashley Devoto as Chief Information Officer.

Bartley Richardson has been named Chief AI and Autonomous Systems Officer at CrowdStrike.

More People On The Move

Expert Insights

Popular Topics

Security Community

Stay Intouch

About SecurityWeek

News Tips

Got a confidential news tip? We want to hear from you.

Submit Tip

Advertising

Reach a large audience of enterprise cybersecurity professionals

Contact Us

Daily Briefing Newsletter

Subscribe to the SecurityWeek Daily Briefing and get the latest content delivered to your inbox.

Copyright © 2026 SecurityWeek ®, a Wired Business Media Publication. All Rights Reserved.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.