Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|RustDuck: The Botnet That’s Still Small but Engineering Like It Plans to Grow|GuardFall Flaw Hits 10 of 11 Popular Open-Source AI Agents|XSS.is, The Forum That Ran the Ransomware Supply Chain Is Down. The Market Isn’t|U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Bell Ambulance data breach impacted over 238,000 people

Bell Ambulance confirms a February 2025 breach affecting 238,000 people, exposing personal, financial, and health information. Nearly 238,000 individuals are impacted by a February 2025 Bell Ambulance data breach. Bell Ambulance is a U.S.-based emergency medical services provider offering ambulance transport, paramedic care, and patient support. It serves communities with urgent medical response, interfacility transfers, […]

Xsolis

Bell Ambulance confirms a February 2025 breach affecting 238,000 people, exposing personal, financial, and health information.

Nearly 238,000 individuals are impacted by a February 2025 Bell Ambulance data breach. Bell Ambulance is a U.S.-based emergency medical services provider offering ambulance transport, paramedic care, and patient support. It serves communities with urgent medical response, interfacility transfers, and non-emergency transport, focusing on patient safety and timely care.

On February 13, 2025, Bell Ambulance detected unauthorized access to its network and started investigating the incident with the help of forensic specialists. Investigation confirmed data exposure, and the company started reviewing affected systems.

The medical services provider disclosed the security breach on April 14, after the Medusa ransomware group claimed responsibility for the attack and the theft of over 219 GB of data. The ransomware group has leaked the allegedly stolen data.

The organization completed the review on February 20, 2026. This week, Bell Ambulance reported the incident to the Maine Attorney General, revealing that attackers accessed its network between February 7 and 14, 2025.

“On February 13, 2025, we became aware of unauthorized activity on our computer network and immediately engaged third-party forensic specialists to determine the full nature and scope of the incident. This investigation confirmed an unauthorized individual accessed data within the Bell network. We then began a thorough review of the impacted portions of our network to determine the type of information contained therein and to whom the information related.” reads the data breach notification letter shared with the Maine Attorney General Office. “While that review continued, Bell notified those individuals it was able to identify and for whom Bell had reliable address information on April 18, 2025. Additional individuals were identified and notified on January 15, 2026. On February 20, 2026, the review was completed and Bell confirmed information related to you was impacted.”

The data breach impacted 237830 individuals, exposing names, Social Security numbers, birth dates, driver’s licenses, financial, medical, and health insurance information. Bell completed its investigation on February 20, 2026, and issued notifications to those impacted.

In response to the incident, Bell Ambulance reset all passwords, secured accounts, and completed a full investigation. The organization offers the impacted individuals 12 months of free credit monitoring and identity protection. Bell advises monitoring credit reports and account statements, reporting suspicious activity, and following enclosed guidance to protect personal information.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, data breach)