Cooper Health System data breach affects nearly 60,000 individuals

Cooper Health System said the data security incident it suffered last year compromised the sensitive personal information of almost 60,000 individuals.

 

Based in Camden, New Jersey, Cooper Health System provides primary, specialty, tertiary, and urgent care to its patients.

 

In a data security incident filed with the Office of Maine Attorney General, Cooper said that in May last year, it identified suspicious activity within its internal network. The healthcare provider immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

It also took steps to contain the incident, secured the affected systems and notified relevant law enforcement authorities about the same.

 

“As a result of this investigation, Cooper learned that an unauthorised actor may have acquired certain data stored in its systems. After a thorough review of the data, on March 26, 2025, Cooper determined that certain personal information may have been impacted by this incident,” the healthcAre provider said.

 

The compromised data contained names and other personal identifiers including Social Security numbers. The filing with the Maine state regulator also states that Copper has identified at least 57,412 individuals impacted by the incident.

 

“As soon as Cooper discovered the incident, we took the steps described above and implemented measures to enhance network security and minimise the risk of a similar incident occurring in the future," Cooper added.

 

While Cooper found no evidence of the compromised information being misused, it advised all affected individuals to regularly monitor their credit reports, account and benefit statements and report any suspicious activity to law enforcement authorities, including the police and the state attorney general.

 

It has also offered one year of complimentary identity protection and credit monitoring services through IDX to all affected individuals.

 

At the time of publishing, no known hacker group claimed responsibility for the cyber attack on Cooper. The healthcare provider also did not share details on who was behind the attack, how much data was compromised, or whether it has received a ransom demand.