Last Update: 06/03/2026 at 7:25 AM EST
Healthcare Vendor Data Breaches
Coverage from Cision PR Newswire, WPBF, and others
Articles
23
Latest Article
05/30
Active Days
367
Executive Summary
Healthcare organizations and vendors are disclosing patient data breaches tied to third-party systems, especially legacy Cerner/Oracle Health environments and related service providers. The recurring pattern is unauthorized access, delayed notification, and offers of credit monitoring or identity protection while investigations and lawsuits continue.
Key Points
- Third-party and vendor-related breaches dominate the cluster, especially incidents involving Cerner/Oracle Health and other healthcare service providers.
- Legacy electronic health record systems are a recurring exposure point, with access to historical patient records, SSNs, medical record numbers, and treatment data.
- Notification timing is a persistent issue, with several disclosures describing long delays between initial access and patient notice.
- Most organizations responded with credit monitoring, identity protection, call centers, and internal or external forensic investigations.
- Some incidents remain partially unverified, with limited public confirmation of exact data types, individual counts, or whether data was exfiltrated versus accessed.
- The legal and regulatory layer is active, with HIPAA obligations, state notice requirements, and class action filings appearing across multiple incidents.
- The cluster is fairly coherent because many items share the same breach pattern, but it is broad enough to include both large multi-hospital events and smaller single-provider incidents.
Featured Article
Cerner data breach began in 2025, affecting legacy EHR data for multiple health system clients in the United States.
Coverage Timeline: 367 Days
Hover over any logo to see coverage summary, click for full article.
Additional Articles
⭐⭐⭐⭐⭐⭐⭐⭐
Oracle Health confirmed a January 2025 hacking incident of legacy Cerner servers affecting up to 80 US hospitals, prompting patient notifications and CISA security guidance.
⭐⭐⭐⭐⭐
TriZetto Provider Solutions data breach exposes patient records nationwide from November 2024 to October 2, 2025, with notification beginning in December 2025.
Cerner data breach potentially exposed patient data at Jupiter Medical Center in Florida in January 2025, with notification delayed by law enforcement.
Atrium Health Navicent disclosed February 2025 notification of a Cerner security incident with possible access to legacy patient records since Jan. 22, 2025.
The Oncology Institute received May 2026 notification from Kroll and filed an SEC Form 8-K on May 22, 2026 about unauthorized access to patient-data systems via a vendor.
Vital Imaging Medical Diagnostic Centers disclosed a February 2025 data breach in Florida affecting PHI and PII for up to 260000 patients.
Blue Shield of California disclosed a Google Analytics misconfiguration found in February 2025 that exposed member protected health information to Google Ads from 2021 to 2024.
TriZetto Provider Solutions, a Cognizant subsidiary, disclosed a 2024-2025 portal breach in which exposed protected health information and identifiers prompted Tennessee-focused class action filings alleging HIPAA notice delays.
⭐⭐⭐
CareCloud reported a March 16 intrusion that disrupted access to one electronic health record environment in its CareCloud Health division for about eight hours.
Atrium Health notified patients in Charlotte and Macon after a Cerner electronic health record vendor breach linked to Oracle Health.
Cerner and Jupiter Medical Center report January 14 2026 data breach in Florida affecting patient data
Healthcare providers disclosed data breaches in 2024-2025 in New Jersey, Pennsylvania, and California involving patient data and ransomware.
Emanuel Medical Center in California reports unauthorized access to hospital systems May 21-24, 2025, exposing patients PII and PHI.
Munson Healthcare notified about 100,000 patients in Michigan after a Cerner legacy systems vendor breach exposed personal health information and Social Security numbers, with letters sent in March 2026.
Cerner Corporation reports a data-breach affecting legacy Cerner systems on January 22, 2025, with Jupiter Medical Center in Florida notifying potentially affected patients.
jupiter medical center alerts patients after cerner data breach on legacy systems in florida in 2025
Blue Shield of California reports a data breach involving protected health information in vendor systems during Oct 2024 to Jan 2025.
UChicago Medicine Medical Group ended its relationship with Nationwide Recovery Services after a July 2024 vendor breach potentially exposed patients' personal information.
Cerner and Aultman Health System report data breach affecting patient data in Canton, Ohio
⭐️⭐️
CJMC reported a data breach on August 25, 2025 in New Jersey.
Alert Medical Alarms disclosed a data breach in Pennsylvania on February 17 2026 affecting personal and protected health information.
Central Jersey Medical Center experienced a 2025 data breach in New Jersey, triggering a class action investigation.