Healthcare Data Breaches — HIPAA & Patient Record Disclosures

Healthcare Data Breaches (742 indexed)

critical · healthcare · Oct 28, 2023

LifeLabs (British Columbia)

15M patient lab test records — largest healthcare breach in Canadian history

View incident → Original disclosure Indexed 2 years, 6 months ago

critical · healthcare · Oct 25, 2023

Medibank Private (Australia)

9.7M customer health records published on dark web — REvil affiliate responsible

View incident → Original disclosure Indexed 2 years, 6 months ago

high · healthcare · Oct 23, 2023

Azienda Ospedaliera di Verona

Rhysida ransomware hit hospital — patient records and medical images stolen

View incident → Original disclosure Indexed 2 years, 6 months ago

high · healthcare · Oct 23, 2023

Sault Ste. Marie Hospital (Ontario)

Cyberattack disrupted hospital operations — patient records at risk

View incident → Original disclosure Indexed 2 years, 6 months ago

high · healthcare · Oct 23, 2023

Mackenzie Health (York Region)

Cyberattack disrupted hospital operations — patient care diverted to other facilities

View incident → Original disclosure Indexed 2 years, 6 months ago

critical · healthcare · Oct 23, 2023

Five Ontario Hospitals (TransForm)

TransForm cyberattack hit 5 hospitals in Windsor-Essex — 267,000 patients notified

View incident → Original disclosure Indexed 2 years, 6 months ago

critical · healthcare · Oct 14, 2023

Advocate Aurora Health (Illinois/Wisconsin)

3M patient records shared with Meta and Google via tracking pixels on patient portal

View incident → Original disclosure Indexed 2 years, 6 months ago

high · healthcare · Oct 10, 2023

Hospital de Torrevieja (Spain)

Ransomware disrupted hospital systems in Alicante — patient care affected

View incident → Original disclosure Indexed 2 years, 6 months ago

critical · healthcare · Oct 9, 2023

Indian Council of Medical Research (ICMR)

815M citizen health records offered for sale — Aadhaar numbers and COVID test data

View incident → Original disclosure Indexed 2 years, 6 months ago

high · healthcare · Oct 6, 2023

Universitatsklinikum Frankfurt

IT systems shut down for 2 weeks after ransomware — 500K patient records compromised

View incident → Original disclosure Indexed 2 years, 6 months ago

critical · healthcare · Oct 6, 2023

23andMe (Global Impact)

6.9M user genetic ancestry profiles scraped through credential stuffing

View incident → Original disclosure Indexed 2 years, 6 months ago

high · healthcare · Oct 5, 2023

Loretto Hospital (Chicago)

327K patient records exposed after ransomware group published full SQL database dump

View incident → Original disclosure Indexed 2 years, 6 months ago

critical · healthcare · Oct 2, 2023

HealthEC

4.5M patient records compromised in business associate breach

View incident → Original disclosure Indexed 2 years, 7 months ago

medium · healthcare · Oct 1, 2023

Regional Medical Center (Orangeburg SC)

87K patient records exposed

View incident → Original disclosure Indexed 2 years, 7 months ago

critical · healthcare · Sep 28, 2023

ESO Solutions (EMS Software)

2.7M emergency medical records exposed — 911 dispatch and ambulance run data compromised

View incident → Original disclosure Indexed 2 years, 7 months ago

critical · healthcare · Sep 22, 2023

PhilHealth (Philippines)

Medusa ransomware stole 750GB of patient data from Philippines health insurer

View incident → Original disclosure Indexed 2 years, 7 months ago

medium · healthcare · Sep 19, 2023

North Kansas City Hospital

47K patient records exposed

View incident → Original disclosure Indexed 2 years, 7 months ago

high · healthcare · Sep 15, 2023

Singing River Health System (Mississippi)

895K patient records exposed — Rhysida ransomware encrypted EHR systems

View incident → Original disclosure Indexed 2 years, 7 months ago

high · healthcare · Sep 14, 2023

Blue Cross Blue Shield of Arizona

730K member records exposed

View incident → Original disclosure Indexed 2 years, 7 months ago

medium · healthcare · Sep 12, 2023

Max Healthcare (India)

Patient appointment data exposed through misconfigured API

View incident → Original disclosure Indexed 2 years, 7 months ago

medium · healthcare · Sep 8, 2023

Rush University Medical Center (Chicago)

46K patient records exposed via email phishing — research participant data included

View incident → Original disclosure Indexed 2 years, 7 months ago

medium · healthcare · Sep 5, 2023

MedInform / Health Solutions

44K patient records exposed

View incident → Original disclosure Indexed 2 years, 7 months ago

high · healthcare · Aug 31, 2023

Postmeds / Truepill Pharmacy

2.4M prescription records exposed — medication names and health conditions leaked

View incident → Original disclosure Indexed 2 years, 8 months ago

critical · healthcare · Aug 31, 2023

Truepill (Pharmacy)

2.4M patient prescription records exposed — names, medications, demographic data

View incident → Original disclosure Indexed 2 years, 8 months ago