Humboldt Independent Practice Association (IPA)
June 26, 2024
•[ data leak, healthcare, unauthorized access ]
Between June 26 and July 1 2024, an unauthorized actor accessed a Humboldt Independent Practice Association email account containing protected health information. Exposed data may include patient names, contact details, birth dates, diagnoses, insurance, and identification numbers. No evidence of encryption or confirmed data exfiltration has been reported. The breach was disclosed to HHS in November 2024 and publicly announced on February 15 2025.
South Africa’s National Health Laboratory Service
June 25, 2024
•[ ransomware, malware, healthcare ]
South Africas National Health Laboratory Service (NHLS) confirms to be dealing with a ransomware attack.
South Africa’s National Health Laboratory Service
June 25, 2024
•[ ransomware, healthcare, cyberattack ]
South Africas National Health Laboratory Service (NHLS) confirms to be dealing with a ransomware attack.
Pinnacle Orthopaedics & Sports Medicine Specialists
June 21, 2024
•[ ransomware, malware, healthcare ]
Pinnacle Orthopaedics & Sports Medicine Specialists is hit with an INC ransomware attack.
Acadian Ambulance
June 21, 2024
•[ ransomware, malware, healthcare ]
Acadian Ambulance is hit with a Daixin ransomware attack. The threat actors claim to have stolen 10 million records.
Maxicare
June 16, 2024
•[ leak, healthcare ]
The health maintenance organization (HMO) Maxicare reports a data breach affecting the personal information of some 13,000 members.
U.S. Dermatology Partners
June 16, 2024
•[ ransomware, malware, healthcare ]
U.S. Dermatology Partners has allegedly 1.8 TB of files leaked by the Black Basta ransomware operation.
Consulting Radiologists
June 14, 2024
•[ hack, healthcare ]
Consulting Radiologists notifies more than 500,000 individuals that their sensitive information was accessed and potentially acquired by threat actors earlier this year.
Gramercy Surgery Center
June 14, 2024
•[ leak, healthcare ]
The threat actor(s) known as Everest Team add Gramercy Surgery Center (Gramercy) to its leak site, and claims to have acquired more than 460 GB of files.
Alabama Cardiology Group
June 6, 2024
•[ hack, healthcare ]
Alabama Cardiology Group notifies nearly 281,000 current and past patients, physicians and employees that threat actors stole their sensitive information.
Synnovis
June 4, 2024
•[ ransomware, malware, healthcare ]
A Qilin ransomware attack affecting pathology and diagnostic services provider Synnovis impacts healthcare services at multiple major NHS hospitals in London.
Special Health Resources
June 2, 2024
•[ ransomware, malware, healthcare ]
Special Health Resources suffers a BlackSuit ransomware attack.
Maryhaven, Inc.
May 30, 2024
•[ data leak, healthcare, unauthorized access ]
Maryhaven, a behavioral health and addiction treatment provider in Ohio, detected unauthorized access to its systems on June 1 2024. An unknown actor accessed and exfiltrated patient and employee PHI/PII data (~7,000 records). No encryption or operational disruption occurred. Disclosure issued April 11 2025 through Cyberscout/TransUnion.
United Urology Group
May 23, 2024
•[ ransomware, malware, healthcare ]
The RansomHouse threat actors claim to have encrypted the system of United Urology Group and exfiltrated about 300 GB of files.
Michigan Medicine
May 23, 2024
•[ leak, healthcare ]
Michigan Medicine, the academic medical center of the University of Michigan, notifies roughly 57,000 individuals that their personal and health information might have been compromised in a data breach.
American Clinical Solutions
May 15, 2024
•[ ransomware, malware, healthcare ]
American Clinical Solutions is hit with a RansomHub ransomware attack, leading to the possible exfiltration of a total of over 700GB of data with over 35GB pertaining to more than 400,000 medical records.
First Nations Health Authority
May 13, 2024
•[ ransomware, malware, healthcare ]
First Nations Health Authority (FNHA) discloses to have suffered a cyber attack. The INC ransomware gang claims responsibility for the attack.
Northeast Rehabilitation Hospital Network
May 13, 2024
•[ ransomware, healthcare ]
Northeast Rehabilitation Hospital Network (NRHN) suffers a Hunters International ransomware attack. They claim to have exfiltrated more than 410 GB of data, comprised of more than 352,000 files.
ConnectOnCall (a subsidiary of Phreesia)
May 12, 2024
•[ leak, healthcare ]
Healthcare software as a service (SaaS) company Phreesia notifies over 910,000 people that their personal and health data was exposed in a May breach of its subsidiary ConnectOnCall, acquired in October 2023.
Ascension
May 8, 2024
•[ ransomware, malware, healthcare ]
Ascension, one of the largest private healthcare systems in the United States, takes some of its systems offline to investigate what it describes as a "cyber security event" confirmed to be a Black Basta ransomware attack.
