HealthEC LLC
4.5M patient records from 17 healthcare providers exposed via population health platform breach
Healthcare Data Breaches (742 indexed)
Astellas Pharma (Japan)
340K clinical trial records exposed
Mercy Medical Center (Baltimore)
54K patient records exposed
NHS Greater Glasgow and Clyde
560K patient records compromised in ransomware
SSM Health (Missouri)
290K patient records exposed via compromised imaging vendor — radiology reports leaked
SingHealth Polyclinics (Singapore)
440K patient prescription records exposed via SQL injection in pharmacy system
Pacific Alliance Medical Center
267K patient records exposed in ransomware
PIH Health (Los Angeles)
200K patient records exposed after phishing attack compromised employee email
Rite Aid Corporation
2.2M customer records stolen in ransomware attack — pharmacy data and purchase history
Group Health Cooperative (Washington)
512K member records exposed via INC Ransom group — Medicaid data included
MedStar Health (2024)
183K patient records exposed in second incident
Synnovis NHS Pathology
Qilin ransomware disrupted blood testing for London hospitals — 3,166 appointments cancelled
Royal Free London NHS
160K patient records exposed via misconfigured analytics sharing with DeepMind/Google
NHS Synnovis Blood Testing
300K patient blood test records exposed in Qilin ransomware attack — London hospitals affected
Synnovis (UK NHS pathology)
3.2M patient records compromised — blood tests disrupted across London
Synnovis (NHS Contractor)
Qilin ransomware disrupted London hospitals — blood transfusion services paralyzed
Betsi Cadwaladr University Health Board (Wales)
310K patient records compromised
Bayer AG
670K pharmaceutical records compromised
Cedars-Sinai (Los Angeles)
670K patient records stolen
Group Health Cooperative
530K patient records exposed
Bausch Health
Patient and employee data accessed via Snowflake credential compromise
NationsBenefits
3.1M health plan member records stolen via MOVEit vulnerability
Globe Life Insurance
850K policyholder records exposed — names, SSNs, health information, policy details
Welltok Inc.
8.5M patient records exposed via MOVEit vulnerability — SSNs, Medicare/Medicaid IDs included