Security Breaches

April 22, 2026

Brockton Hospital Implements Downtime Procedure After Ransomware Attack

Brockton Hospital in Massachusetts continues to operate under downtime procedures following a ransomware attack on April 6, 2026, that disrupted electronic systems, patient services, and ...

April 1, 2026

PHI Exposed Due to NYC Health + Hospitals Data Breach

NYC Health + Hospitals Corporation disclosed on March 24, 2026, that personally identifiable information (PII) and protected health information (PHI) were exposed following unauthorized access ...

March 22, 2026

Trinity Health and UPMC Data Breach Through Health Information Exchange

Trinity Health and the University of Pittsburgh Medical Center (UPMC) have disclosed potential unauthorized access to patient data linked to a Health Information Exchange (HIE) ...

March 15, 2026

Iran-Linked Hackers Claim Cyberattack on U.S. Medical Device Manufacturer Stryker

A hacking group linked to Iran claimed responsibility for a cyberattack that disrupted the operations of U.S. medical device manufacturer Stryker and wiped large numbers ...

March 8, 2026

PIH Health Notifies Patients Following December 2024 Ransomware Incident

PIH Health has begun notifying individuals whose personal and health information may have been accessed during a ransomware attack detected on December 1, 2024. Incident ...

February 15, 2026

ApolloMD’s May 2025 Ransomware Attack Affected 626,500 Patients

ApolloMD sent confirmation to the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) that the May 2025 ransomware attack involved unauthorized ...

February 3, 2026

ITRC Reports Record Number of U.S. Data Breaches in 2025

U.S. data compromise incidents reached a new annual high in 2025 with 3,332 confirmed incidents, while the number of individuals affected declined compared to the ...

January 2, 2026

PHI Exposed by Job-Sharing Employee

TapestryHealth based in Connecticut is technology solutions provider to post-acute and assisted living establishments. It discovered unauthorized access to its patient records, which may be ...

November 30, 2025

Network Attack on VITAS Hospice Services Discovered After a Month

VITAS Hospice Services, LLC, the biggest hospice chain in the U.S., sent a notification to the California and Texas attorneys general regarding a data security ...

November 18, 2025

Immediate Patching Necessary to Correct Actively Exploited Cisco Vulnerabilities

Threat actors are exploiting several Cisco vulnerabilities that had been issued patches in August. There have been attacks on devices that were incorrectly patched. The ...

November 7, 2025

Vertikal Systems Hospital Data Management System Vulnerabilities Identified

Vertikal Systems vulnerabilities were found in its Hospital Manager Backend Services, which is a hospital data management system. An attacker can remotely exploit one high-severity ...

October 19, 2025

Data Breaches in Q3, 2025 Affected 23 Million Individuals

According to Identity Theft Resource Center (ITRC), the number of reported system compromises and data breach remains high, though incidents slightly dropped compared to the ...

September 12, 2025

Heartland Alliance Pays $300,000 to Settle Data Breach Lawsuit

A Chicago anti-poverty organization and affiliated entities have decided to pay $300,000 to settle a class action lawsuit associated with a 2022 data breach. On ...

June 10, 2025

Kettering Health Status Update After the Ransomware Attack

Kettering Health is progressing in recovering from the ransomware attack it encountered on May 20, 2025. Although its EHR has been recovered, other IT systems ...

May 26, 2025

483,000 Catholic Health Patients’ PHI Exposed Due to Unsecured Serviceaide Database

Business associate Serviceaide, Inc. based in San Jose, California provides AI-powered agents to help with IT and workflow management. It recently reported a big data ...

May 13, 2025

340,000 People Impacted by St Clair Orthopaedics & Sports Medicine Security Breach

St Clair Orthopaedics & Sports Medicine (SCOSM) in St. Clair Shores, Michigan, recently announced a data breach. SCOSM reported a breach to the HHS’ Office ...

May 5, 2025

Ascension Reports Data Breaches Involving Its Business Partners

Ascension in St. Louis, Missouri began sending notification letters to some patients concerning a security incident that happened at an ex-business partner. On December 5, ...

April 28, 2025

1.6 Million Individuals Affected by Laboratory Services Cooperative Breach

Laboratory Services Cooperative, based in Seattle, WA, provides Planned Parenthood centers with laboratory testing services. In compliance with HIPAA breach notification laws, it began notifying ...

April 15, 2025

Impermissible Disclosure of Blue Shield of California Members’ PHI to Google Ads

On April 9, 2025, the medical insurance plan company Blue Shield of California reported a privacy breach due to web tracking codes sharing user data ...

March 22, 2025

Philips Intellispace Cardiovascular (ISCV) Vulnerabilities Found

Philips Intellispace Cardiovascular (ISCV) is a well-known provider of multi-modality data and image management solutions to HIPAA-compliant healthcare companies. Two high-severity vulnerabilities were discovered to ...

February 9, 2025

883K Individuals Affected by Hospital Sisters Health System 2023 Data Breach

Prevea Health in Green Bay, WI, and Hospital Sisters Health System (HSHS) in Springfield, IL suffered a cyberattack that triggered a system outage on August ...

January 25, 2025

190 Million Healthcare Records Compromised in Change Healthcare Cyberattack

The Change Healthcare cyberattack has caused massive disruption to healthcare services in the United States, including huge financial hardship for healthcare providers due to a ...

January 16, 2025

McPherson Hospital Settles Class Action Data Breach Lawsuit for $500,000

McPherson Hospital, a critical access hospital with 25 beds in Kansas, has decided to resolve a class action lawsuit with a $500,000 settlement fund. The ...

January 14, 2025

Tampa General Hospital Pays $6.8M to Settle Data Breach Lawsuit

Tampa General Hospital has consented to pay $6,800,000 to settle a class action lawsuit associated with a cyberattack in 2023 where unauthorized access to systems ...

January 2, 2025

Nebraska Attorney General Takes Legal Action Against ChangeHealthcare Over CyberAttack

Nebraska Attorney General Mike Hilgers is the first state Attorney General to take legal action against Change Healthcare because of the ransomware attack it encountered ...

November 6, 2024

Zero day vulnerability exploited in FortiManager

Fortinet has warned of a critical vulnerability in its FortiManager management platform, a tool that defines network and security policies for all its products. At ...

October 7, 2024

700,000+ DrayTek Routers Exposed to Security Vulnerabilities

A series of new security vulnerabilities affecting DrayTek routers have been discovered, putting over 700,000 devices at risk of exploitation. Researchers found that these flaws ...

September 20, 2024

Windows MSHTML Platform Zero Day Vulnerability Actively Exploited by APT Group

Microsoft patched a vulnerability on September Patch Tuesday yet attackers are still exploiting the vulnerability to install data-stealing malware. Vulnerability CVE-2024-43461 is identified as a ...

August 22, 2024

464,000 People Impacted by Kootenai Health Ransomware Attack

Health system Kootenai Health based in Coeur d’Alene, ID serves northern Idaho and the Inland Northwest. It recently reported a data security breach that affected ...

July 11, 2024

SkinCure Oncology Email Account Breach

SkinCure Oncology in Burr Ridge, IL has informed 13,434 individuals regarding an email attack that happened in June 2023. SkinCure Oncology has sent personal notifications ...

12 3…28 Next

.st1{display:none}Security Breaches

Security Breaches