Healthcare Data Breaches — HIPAA & Patient Record Disclosures

Healthcare Data Breaches (742 indexed)

high · healthcare · Jan 10, 2025

GSK (GlaxoSmithKline)

560K pharmaceutical records exposed in targeted attack

View incident → Original disclosure Indexed 1 year, 3 months ago

high · healthcare · Jan 10, 2025

Sentara Healthcare (Virginia)

780K patient records exposed

View incident → Original disclosure Indexed 1 year, 3 months ago

high · healthcare · Jan 10, 2025

Frederick Health Medical Group

934K patient records compromised in ransomware attack on Maryland healthcare group

View incident → Original disclosure Indexed 1 year, 3 months ago

high · healthcare · Jan 3, 2025

Anna Jaques Hospital

316K patient records stolen in Christmas Day ransomware attack on Massachusetts hospital

View incident → Original disclosure Indexed 1 year, 3 months ago

critical · healthcare · Jan 2, 2025

Community Health Center Inc

1M patient records exposed in data breach

View incident → Original disclosure Indexed 1 year, 4 months ago

critical · healthcare · Jan 2, 2025

Community Health Center (Connecticut)

1M+ patient records including SSNs and health diagnoses accessed by threat actor

View incident → Original disclosure Indexed 1 year, 4 months ago

high · healthcare · Jan 1, 2025

SickKids Toronto

Patient and research data temporarily encrypted in LockBit attack — decryptor provided after backlash

View incident → Original disclosure Indexed 1 year, 4 months ago

critical · healthcare · Dec 28, 2024

PowerSchool (student health records)

62M student and staff records including health data exposed

View incident → Original disclosure Indexed 1 year, 4 months ago

critical · healthcare · Dec 12, 2024

ESO Solutions

2.7M patient records from hospital and fire department EMS systems exposed in ransomware attack

View incident → Original disclosure Indexed 1 year, 4 months ago

high · healthcare · Dec 8, 2024

Saint Francis Health System (Oklahoma)

275K patient records exposed — attackers exfiltrated surgical and billing records

View incident → Original disclosure Indexed 1 year, 4 months ago

high · healthcare · Dec 5, 2024

University of Pittsburgh Medical

560K patient records stolen

View incident → Original disclosure Indexed 1 year, 4 months ago

high · healthcare · Dec 2, 2024

Vancouver Coastal Health Authority

445K patient records exposed after contractor laptop theft — unencrypted drive

View incident → Original disclosure Indexed 1 year, 5 months ago

high · healthcare · Dec 1, 2024

Roche

450K patient data records exposed via vendor

View incident → Original disclosure Indexed 1 year, 5 months ago

high · healthcare · Nov 28, 2024

Alder Hey Children's Hospital

INC Ransom gang stole patient records from Liverpool children's hospital

View incident → Original disclosure Indexed 1 year, 5 months ago

high · healthcare · Nov 25, 2024

Wirral University Teaching Hospital

Cyberattack forced hospital to declare major incident — systems offline for days

View incident → Original disclosure Indexed 1 year, 5 months ago

high · healthcare · Nov 15, 2024

Prisma Health (South Carolina)

230K patient records exposed via compromised vendor portal — including OB/GYN records

View incident → Original disclosure Indexed 1 year, 5 months ago

high · healthcare · Nov 12, 2024

Cardiovascular Associates (Alabama)

441K patient cardiovascular records — detailed test results and implant data exposed

View incident → Original disclosure Indexed 1 year, 5 months ago

high · healthcare · Nov 1, 2024

Advocate Aurora Health (Illinois)

560K patient records compromised

View incident → Original disclosure Indexed 1 year, 6 months ago

high · healthcare · Nov 1, 2024

IWK Health Centre (Halifax)

290K pediatric records compromised

View incident → Original disclosure Indexed 1 year, 6 months ago

critical · healthcare · Oct 15, 2024

Universitair Medisch Centrum Utrecht

1.5M Dutch hospital patient records accessed via compromised Epic EHR credentials

View incident → Original disclosure Indexed 1 year, 6 months ago

medium · healthcare · Oct 14, 2024

University Hospitals of Morecambe Bay

Ransomware disrupted hospital IT — appointment systems and patient portals down

View incident → Original disclosure Indexed 1 year, 6 months ago

critical · healthcare · Oct 6, 2024

23andMe (Global)

6.9M user profiles scraped via credential stuffing — ancestry and genetic data exposed worldwide

View incident → Original disclosure Indexed 1 year, 6 months ago

medium · healthcare · Oct 5, 2024

Vitalite Health (New Brunswick)

190K patient records exposed

View incident → Original disclosure Indexed 1 year, 6 months ago

high · healthcare · Oct 5, 2024

Froedtert Health (Wisconsin)

188K patient records exposed via phishing attack on medical staff email accounts

View incident → Original disclosure Indexed 1 year, 6 months ago