Superior Vision Service, a vision benefit provider under Versant Health, suffered a cyberattack initiated via a phishing email targeting an employee on July 9, 2025. The investigation confirmed that cybercriminals exfiltrated emails containing personally identifiable information (PII) and protected health information (PHI) on July 11, 2025. Compromised data included full names, physical addresses, phone numbers, email addresses, dates of birth, gender, Social Security numbers, vision coverage details, and employment-related enrollment information. The breach affected thousands of individuals, though the exact number remains undisclosed. Superior Vision responded by disabling the compromised email account, securing its systems, and notifying law enforcement. Impacted individuals were offered one year of free three-bureau credit monitoring through TransUnion’s myTrueIdentity service. Notifications to affected parties and the New Hampshire Attorney General were issued on September 26, 2025. The incident poses significant risks of identity theft, financial fraud, and targeted phishing attacks due to the sensitivity of the exposed data. Customers were advised to enroll in credit monitoring, scrutinize financial accounts, and consider fraud alerts or credit freezes.