ChristianaCare (Delaware)
215K patient records exposed via compromised employee credentials — pharmacy data included
Healthcare Data Breaches (742 indexed)
Anthem Inc. (Elevance Health)
3.2M member records exposed via compromised claims processing vendor
Hartford HealthCare (Connecticut)
298K patient records — credentials stolen via brute-force attack on VPN gateway
Alabama Ophthalmology Associates
130K patient records including medical images and insurance details exposed
Vancouver Coastal Health
Ransomware disrupted health authority systems — patient care coordination affected
Winnipeg Regional Health Authority
340K patient records compromised
Mount Sinai Health System (NYC)
320K patient records exposed via third-party billing vendor ransomware attack
Valley Oaks Health (Indiana)
Behavioral health provider breach exposed 750K patient mental health records
Blue Shield of California
4.7M member records shared with Google Analytics via misconfigured web tracking
HSE Ireland (Health Service Executive)
890K patient records compromised in new attack
Hospital Clinic Barcelona
340K patient records compromised in RansomHouse attack
AstraZeneca
1.1M patient trial records compromised in vendor breach
Northeast Orthopedics & Sports Medicine
Ransomware attack encrypted patient records and disrupted clinical operations
King Faisal Specialist Hospital (Saudi)
340K patient records stolen
MultiCare Health System
870K patient records exposed in Washington state health system cyberattack
CarePoint Health (New Jersey)
363K emergency department patient records exposed after server misconfiguration
BC Cancer Agency
680K patient treatment records exposed via compromised research data warehouse
MedStar Health (Washington DC)
183K patient records exposed via compromised email accounts — phishing attack
Tokyo Metropolitan Cancer Hospital
287K patient oncology records exfiltrated — unauthorized access via VPN zero-day
Telus Health
1.4M patient records compromised in targeted attack
Yale New Haven Health System
5.6M patient records exposed including SSNs and medical record numbers — $18M settlement
Cerebral Inc.
3.1M mental health patient records shared with advertising platforms via tracking pixels
Fraser Health (BC)
890K patient records exposed in network breach
Olympus Corporation (Japan)
280K medical device records exposed