Data breaches or leaks involving health or medical data.
The Grand Junction Daily Sentinel reports: On Tuesday morning, Family Health West Hospital in Fruita discovered that it was the target of a cyberattack. While the cyberattack forced the hospital to shut down its electronic systems, a hospital spokesperson said that patient care has not been impacted, nor do they expect it will be. They […]
Vibra Hospital of Sacramento, LLC recently reported a data breach to the California Attorney General’s Office. According to their notification, they became aware of suspicious activity in several employee email accounts on March 13. Their investigation subsequently revealed that six employees’ email accounts had been subject to unauthorized access between March 11 and March 22. […]
Bank Info Security reports: Montana state regulators are investigating a data breach affecting 462,000 Blue Cross Blue Shield of Montana members involving one of the health insurer’s third-party services providers – and they want to know why nearly 10 months have gone by without notifying the breach victims. It took nearly four months for the […]
From Polsinelli PC: In two separate but related actions, third party administrators (TPAs) and their insurance business partners agreed to substantial settlements to resolve allegations that they failed to adequately safeguard sensitive data from cyberattacks. Though neither case involved a finding of fault, both spotlight a growing trend: plaintiffs and regulators are treating basic cybersecurity […]
From HHS OCR:
BankInfoSecurity reports: With ransomware gang Nova threatening to leak patient data on the darkweb, a Dutch laboratory that performs cervical cancer tests for a government screening program is mum about the ransom negotiations, but it says the cyberattack in July has affected 941,000 patients – nearly double the initial estimate of 485,000 people. Bevolkingsonderzoek Nederland, […]
In what is currently the third largest health data breach of 2025, kidney dialysis provider DaVita has reported a ransomware attack to HHS. Bleeping Computer reports: Kidney dialysis firm DaVita has confirmed that a ransomware gang that breached its network stole the personal and health information of nearly 2.7 million individuals. DaVita serves over 265,400 […]
There is a settlement in litigation stemming from a breach reported last year that affected more than three dozen Cencora/Lash Group clients, and more than 1.4 million patients at last public count. The HIPAA Journal now reports: Cencora & The Lash Group have agreed to pay $40 million to settle class action data breach litigation […]
ClaimDepot reports: On July 3, 2025, Sanderling Healthcare became the victim of a significant ransomware attack that may have impacted thousands of patients. The data breach was orchestrated by the Sarcoma group disclosed on the dark web, where the attackers claimed to have hacked and accessed sensitive data from the company’s systems. According to the […]
Bleeping Computer reports: AMEOS Group, an operator of a massive healthcare network in Central Europe, has announced it has suffered a security breach that may have exposed customer, employee, and partner information. The organization published a statement on its website, as required by Article 34 of the General Data Protection Regulation (GDPR), which mandates a […]
