On December 1, 2024, Nevro Corp. became aware of suspicious activity on its network, prompting an immediate investigation with the assistance of third-party cybersecurity specialists. The investigation revealed that an unauthorized individual gained access to a small number of Nevro's systems between November 21 and December 1, 2024. During this period, the unauthorized actor may have taken certain sensitive information from the company's network.
Nevro Corp. completed a thorough review of the compromised information on March 14, 2025. The breach exposed various types of sensitive personal information, including personally identifiable information (PII) and protected health information (PHI).
The compromised data included individuals' names, Social Security numbers, driver's license numbers, financial information such as account numbers and credit or debit card numbers, medical information, and health insurance details.
The breach impacted 17,478 individuals in the United States. In Texas, 6,381 people were affected, while in New Hampshire, 10 residents were impacted. Nevro Corp. disclosed the breach to relevant authorities, including the California Attorney General's Office, the Texas Attorney General's Office, and the New Hampshire Attorney General's Office. These disclosures were made on April 2 and April 3, 2025, respectively.
Nevro Corp. informed affected individuals directly about the breach through written notifications sent via U.S. Mail. The notice provided detailed information about the incident and the types of personal data potentially compromised. You can view the official disclosures on the websites of the California Attorney General, the Texas Attorney General, and the New Hampshire Attorney General.
To help protect affected individuals, Nevro Corp. is offering complimentary credit monitoring and fraud assistance services through Cyberscout. Those impacted by the breach are encouraged to enroll in these services to receive timely alerts of any suspicious activity related to their personal information.
Additionally, Nevro Corp. has provided guidance to affected individuals on protecting themselves from identity theft and fraud. The company advises individuals to closely monitor their financial accounts and credit reports for unusual activity. Individuals should report any suspicious activity immediately to their bank, credit card company, or other relevant institutions. Nevro Corp. also recommends placing fraud alerts or credit freezes on credit files as precautionary measures.
For more information about the company, visit Nevro Corp.'s official website.