Active breach tracker Sarasota, FL Disclosed June 13, 2025

Diversified Services Enterprises Data Breach 2025: 501 Affected · Hacking/IT Incident · FL. Filed With HHS OCR. What To Do.

Diversified Services Enterprises, a Sarasota, Florida business associate, filed a HIPAA breach notification with the HHS Office for Civil Rights on June 13, 2025, reporting 501 affected individuals in a Hacking/IT Incident at a network server. The OCR portal entry is the primary public record; the entity's substitute notice and any class-action filings have not yet surfaced publicly.

You have options. Scroll for the exact action steps, what your provider’s response covers, and what your health data needs beyond credit monitoring.

By HealthConsent Editorial Last updated Sources & methodology

Timeline

Jun 13, 2025

Filed with HHS OCR as a Hacking/IT Incident at a network server affecting 501 individuals

Data exposed

03

Contact & insurance

Phishing + targeted scams

Not publicly disclosed beyond 'Network Server' on the OCR portal
If you received a letter

Your action plan, in five steps.

You have more rights than the notification letter explains. Each step below is a concrete thing you can do today. Full detail and timing in the sections that follow.

01

Accept credit monitoring

It’s the floor of the response. Take it.

02

Freeze your credit

Free at Equifax, Experian, TransUnion.

03

File IRS Form 14039

Prevent fraudulent tax return under your SSN.

04

Review your EOBs

Insurance statements catch medical identity theft early.

05

Stop the ongoing flow

Credit monitoring doesn’t cover your health records. HealthConsent does.

Jump to step 5: protect my health data

Diversified Services Enterprises, a Florida business associate, filed a HIPAA breach notification with the U.S. Department of Health and Human Services Office for Civil Rights on June 13, 2025, reporting 501 affected individuals in a Hacking/IT Incident at a network server. The entity is registered in Sarasota, Florida (Florida Division of Corporations document number P13000100604) and operates as a business associate to covered entities.

This page reflects what the HHS OCR portal entry publicly discloses. The entity’s substitute notice, the specific data elements exposed, attacker attribution, response details, credit-monitoring offerings, and any class-action filings have not appeared in established trade press, state attorney general portals, or court records as of this update.

Timeline

  • June 13, 2025 — Filed with HHS OCR as a Hacking/IT Incident at a network server affecting 501 individuals. Because the affected count is exactly 501 — one above the 500-individual threshold that triggers federal media notice and Florida Attorney General notification under § 501.171(3)(b) — this entry sits at the smallest scale that still mandates regulatory disclosure.

What was exposed

The OCR portal entry lists only the Location of Breached Information as Network Server. The portal does not enumerate the specific data elements compromised. Until the entity publishes its substitute notice or individual notification letters arrive, the categories of information potentially affected — names, dates of birth, Social Security numbers, medical record numbers, health plan beneficiary numbers, treatment information, or other PHI — are not publicly characterized.

Credit monitoring and offerings

No credit-monitoring offer is documented on the public record at this time. Entities reporting breaches at the 500-individual threshold often include identity-monitoring services in their notification letters, but the offer’s existence and terms cannot be confirmed until the entity publishes its substitute notice or affected individuals receive their letters.

Class action and litigation

No class-action complaint naming Diversified Services Enterprises has been filed in connection with this incident, based on review of public court records and class-action trackers. Plaintiff-side firms commonly hold off on filing for breaches at the 500-individual threshold until notification letters are mailed and the data elements are characterized.

What to do if you may be affected

Until the entity publishes its substitute notice or your individual notification letter arrives, the protective steps to take are generic but useful:

  • Freeze your credit with Equifax, Experian, and TransUnion. It is free, takes about ten minutes per bureau, and is the single highest-leverage step against identity theft.
  • Watch for a notification letter at the address on file with Diversified Services Enterprises or with a covered-entity provider that may have used Diversified Services Enterprises as a business associate. Notification letters typically follow the OCR filing by a few weeks. Read it carefully. It will list the specific data elements exposed and any complimentary credit-monitoring offered.
  • Bookmark this page. We update it as new information becomes publicly available.

Sources on this page

Stop your data from spreading further

Credit monitoring covers your wallet. HealthConsent covers your health records.

Your stolen diagnoses, test results, and medical record numbers don’t expire when the free credit-monitoring window ends. HealthConsent automates HIPAA restriction requests and opt-outs across providers, insurers, HIEs, and prescription networks so the data taken in this breach can’t keep being shared and sold by other entities downstream.

Protect my health data

Cancel anytime · Family plan covers spouses + dependents

About this page

This page is compiled from public regulatory filings, the breached entity’s own disclosures, and reporting from established healthcare-privacy outlets. Some sections are assembled with the help of automated research and may contain errors, summaries that lag the underlying source, or details that have since been revised. Treat it as a starting point, not legal advice or an authoritative record. If you spot something inaccurate, the linked sources above are the canonical record. For questions about your individual situation, contact the breached entity directly or consult a licensed attorney.