Kuwait’s Health Ministry
September 25, 2024
•[ cyberattack, healthcare, system outage ]
The Kuwaits Health Ministry is recovering from a cyberattack that took down systems at several of the countrys hospitals, as well as the countrys Sahel healthcare app.
Duopharma Biotech
September 24, 2024
•[ ransomware, malware, healthcare ]
Malaysian pharmaceutical firm Duopharma Biotech is hit with a Valencia ransomware attack. The threat actor claims to have stolen 25.7GB of sensitive information.
American Addiction Centers (AAC)
September 23, 2024
•[ ransomware, malware, healthcare ]
A ransomware attack on American Addiction Centers exposes the sensitive healthcare information of more than 400,000 people. The Rhysida ransomware gang claims responsibility for the attack.
Regional Care
September 18, 2024
•[ leak, healthcare ]
Nebraska-based healthcare insurance firm Regional Care discloses a data breach impacting more than 225,000 individuals as a result of an incident identified in mid-September 2024.
Kitsap Mental Health Services (KMHS)
September 17, 2024
•[ hack, healthcare ]
Kitsap Mental Health Services discloses to have suffered a cyberattack due to an unauthorized access to their network.
MCNA Dental
September 16, 2024
•[ ransomware, malware, healthcare ]
MCNA Dental allegedly suffers a new breach by the Everest Team ransomware group.
Retina Group of Florida
September 11, 2024
•[ hack, healthcare ]
RG of FL reported a Hacking/IT Network Server breach (HHS) affecting 152,691 people; activity occurred Nov 69, 2024, detected Nov 9; data potentially include PII/PHI (names, DOB, SSN, DL, medical info); notifications began mid-Sept 2025.
Boston Children’s Health Physicians
September 10, 2024
•[ ransomware, malware, healthcare ]
Boston Childrens Health Physicians (BCHP) discloses to have suffered a cyber attack The BianLian ransomware operation claims responsibility for the attack.
Great Plains Regional Medical Center
September 8, 2024
•[ ransomware, malware, healthcare ]
Great Plains Regional Medical Center in Oklahoma notifies over 133,000 individuals that their personal information was compromised in a ransomware attack.
Cardiology of Virginia
September 7, 2024
•[ ransomware, malware, healthcare ]
Cardiology of Virginia patient data appears to be up for sale after an alleged RansomHub ransomware attack.
Physical Medicine & Rehabilitation Center
September 6, 2024
•[ leak, healthcare ]
The Physical Medicine & Rehabilitation Center posts a notice on its website about an incident in July that affected patients at their New Jersey and New York locations. The Meow Leaks claims responsibility for the attack.
BayMark Health Services
September 1, 2024
•[ ransomware, healthcare ]
BayMark Health Services, North America's largest provider of substance use disorder (SUD) treatment and recovery services, notifies an undisclosed number of patients that attackers stole their personal and health information in a September 2024 breach. The RansomHub operation claimed responsibility for the breach.
Hesley Group (UK care provider)
September 1, 2024
•[ hack, healthcare ]
In September 2024, a cyberattack against Hesley Group led to unauthorized access to HR folders, with a small amount of sensitive staff data stolen. Exfiltrated information included PII and employment/medical records (names, contact details, bank details, salary, criminal record, medical data, etc.). No encryption or ransomware involved. The attackers remain unidentified. The incident was publicly disclosed in August 2025 after regulatory notifications.
Australian Cancer Research Foundation
August 30, 2024
•[ leak, healthcare ]
The Australian Cancer Research Foundation (ACRF) sent an email to its donors late on Friday afternoon, 30 August, warning them of a data security incident.
NHS
August 29, 2024
•[ leak, healthcare ]
Several NHS staff in Scotland have had their mobile phone numbers revealed in a cyber security incident involving a third-party supplier to several health boards.
Horizon View Medical Center
August 22, 2024
•[ ransomware, malware, healthcare ]
The Everest ransomware team lists on its data leak site the Nevada-based Horizon View Medical Center and claims to have stolen medical record information, including test results and other sensitive patient data.
AuthoraCare Collective
August 18, 2024
•[ hack, healthcare ]
Between August 1822, 2024, an unauthorized actor accessed AuthoraCare Collectives network, compromising protected health information of approximately 58,019 people. The review concluded on October 21, 2024, and notification letters were issued January 2, 2025. AuthoraCare offered credit monitoring services to those affected.
Chris Leong
August 10, 2024
•[ hack, malware, healthcare ]
In August 2024, the website of Master Chris Leong "a leading Tit Tar practitioner in Malaysia" suffered a data breach. The incident exposed 27k unique email addresses along with names, physical addresses, dates of birth, genders, nationalities and in many cases, links to Facebook profiles. The company did not respond when contacted about the breach.
OnePoint Patient Care
August 8, 2024
•[ ransomware, malware, healthcare ]
OnePoint Patient Care (OPPC) informs customers about a data breach impacting their personal information. The Inc Ransom ransomware group takes credit for the attack. The impact is bigger than initially believed, with over 1.7 million people affected
McLaren Health Care
August 6, 2024
•[ ransomware, malware, healthcare ]
IT and phone systems at McLaren Health Care hospitals are disrupted following an attack linked to the INC Ransom ransomware operation.
