#United States #Durham #Data Security Incident #Hillcrest Convalescent Center #Personal Information

Hillcrest Convalescent Center Addresses Data Security Incident

On March 4, 2025, Hillcrest Convalescent Center and Hillcrest Raleigh at Crabtree Valley collectively known as "Hillcrest," reported a data security incident impacting individuals' personal information. The center, located in Durham, N.C., aims to keep the public informed while offering guidance on how to mitigate potential risks.

Understanding the Incident

The breach occurred on June 27, 2024, when unusual activity was detected on Hillcrest's network. To protect sensitive data, the organization immediately engaged with cybersecurity professionals to investigate and secure its systems. The analysis revealed unauthorized access that resulted in the acquisition of certain Hillcrest data. As a result, Hillcrest undertook a thorough review of the affected information, which concluded on February 13, 2025.

Personal Information at Risk

Individuals whose data may be affected include information such as names, dates of birth, Social Security numbers, patient data, medical histories, treatment details, health insurance information, and health care provider data. Though there have been no confirmed instances of data misuse, Hillcrest believes it is essential to inform those at risk and provide support.

Steps Taken by Hillcrest

To prioritize the security of personal information, Hillcrest has launched a comprehensive review of its security infrastructure. This includes working with law enforcement agencies to identify and hold accountable those behind the breach. In a notable effort to assist those impacted, Hillcrest is providing free credit monitoring and identity restoration services through TransUnion for affected individuals. Eligible persons must sign up for these services by June 5, 2025.

What Affected Individuals Should Do

Hillcrest encourages affected individuals to take proactive measures to safeguard their information. Here are some recommended actions:

1. Monitor Accounts: Regularly check financial statements for any unauthorized transactions. Promptly report suspicious activity to your bank or service provider.

2. Check Credit Reports: U.S. law allows individuals to request one free credit report annually from each of the three major credit bureaus—Equifax, Experian, and TransUnion.
You can obtain your free report at annualcreditreport.com or by calling toll-free at 1-877-322-8228.

3. Place Security Freezes or Fraud Alerts: Individuals can request a security freeze on their credit reports to prevent unauthorized access, or they can place a fraud alert, prompting creditors to take extra steps to verify identity before issuing credit.

4. Stay Informed: Familiarize yourself with identity theft and fraud protection resources available from the Federal Trade Commission or your state Attorney General. Reporting identity theft promptly can help mitigate the impact of any breaches.

5. Use Provided Assistance: If you have questions or need further information, reach out to Hillcrest's dedicated assistance line at 1-833-799-4042, available from 8 AM to 8 PM ET.

Conclusion

While the data breach raises concerns about privacy and security, Hillcrest is committed to ensuring the safety of its community members' information. By following the outlined steps and utilizing offered resources, affected individuals can take significant measures to protect their identities and personal data. Hillcrest continues to express regret for any distress caused by this incident and is focused on rebuilding trust within the community.

For ongoing updates and resources, individuals can visit Hillcrest's website or contact them for assistance.