Prisma Health (South Carolina)
230K patient records exposed via compromised vendor portal — including OB/GYN records
Healthcare Data Breaches (727 indexed)
Cardiovascular Associates (Alabama)
441K patient cardiovascular records — detailed test results and implant data exposed
Advocate Aurora Health (Illinois)
560K patient records compromised
IWK Health Centre (Halifax)
290K pediatric records compromised
Universitair Medisch Centrum Utrecht
1.5M Dutch hospital patient records accessed via compromised Epic EHR credentials
University Hospitals of Morecambe Bay
Ransomware disrupted hospital IT — appointment systems and patient portals down
23andMe (Global)
6.9M user profiles scraped via credential stuffing — ancestry and genetic data exposed worldwide
Vitalite Health (New Brunswick)
190K patient records exposed
Froedtert Health (Wisconsin)
188K patient records exposed via phishing attack on medical staff email accounts
Heritage Valley Health System (Pennsylvania)
847K patient records compromised via unpatched Citrix NetScaler vulnerability
Medtronic
890K medical device records compromised in supply chain attack
Royal Flying Doctor Service
120K patient records exposed in ransomware attack
Johns Hopkins Medicine
780K patient records compromised in targeted attack
Scattered Spider / Star Health India
31M customer records and 5.8M insurance claims leaked via Telegram bot
Scottish Ambulance Service
120K patient transport records compromised
Alberta Health Services
1.8M patient records compromised — unauthorized access to provincial health database
Texas Tech University Health Sciences Center
1.4M patient records exposed in Interlock ransomware attack on academic medical center
Novartis
890K clinical trial records stolen
Humber River Health (Toronto)
180K patient records exposed via vendor platform
UCLA Health
1.1M patient records exposed in credential harvesting
Atrium Health Wake Forest Baptist
585K patient records exposed via compromised online scheduling portal
Roper St. Francis Healthcare
BianLian ransomware accessed 700K patient records across South Carolina health system
Navvis & Company
462K patient records exposed including SSNs and health insurance information
Anthem / Elevance Health (2024)
2.4M member records re-exposed via legacy system during cloud migration — SSNs and diagnoses