More than 560,000 people were impacted across four data breaches disclosed last week to authorities by the healthcare organizations Hillcrest Convalescent Center, Gastroenterology Associates of Central Florida, Community Care Alliance, and Sunflower Medical Group.
The biggest of the breaches in terms of the number of impacted individuals was disclosed by Kansas-based healthcare services provider Sunflower Medical Group.
Sunflower learned of the data breach on January 7, 2025, and a probe showed that hackers had access to its systems since December 15, 2024, obtaining information such as name, address, date of birth, Social Security number, driver’s license number, medical information, and health insurance information.
The Rhysida ransomware group took credit for the attack on Sunflower Medical in January 2025, claiming to have stolen more than 3Tb of files, which they had offered to sell. The hackers claimed to have stolen the information of 400,000 people, but Sunflower told the Maine Attorney General’s Office that 220,000 individuals were impacted.
Hillcrest Convalescent Center, a North Carolina-based nursing home and rehabilitation center, detected suspicious activity on its network in late June 2024.
An investigation showed that hackers accessed its systems and stole data, including names, Social Security numbers, dates of birth, financial account information, driver’s license and other government-issued ID numbers, medical information, and health insurance information.
Hillcrest told the Maine Attorney General that the incident impacted just over 106,000 people.
Gastroenterology Associates of Central Florida (dba Center for Digestive Health) detected a breach in its IT network in April 2024, and its probe showed that threat actors may have obtained the name, Social Security number, date of birth, and health information of over 122,000 individuals.
The data was apparently taken by the BianLian ransomware group, which took credit for the attack on Center for Digestive Health in mid-May 2024.
Rhode Island-based Community Care Alliance was breached in early July 2024. An investigation completed in January 2025 showed that cybercriminals may have obtained information such as name, address, birth date, driver’s license numbers, Social Security numbers, diagnosis information, lab results, insurance information, and treatment information.
Community Care Alliance told the Maine Attorney General’s Office and the Department of Health and Human Services that the incident impacted roughly 115,000 people.
The Rhysida ransomware group took credit for the attack on Community Care Alliance in late July 2024.
In 2024 organizations informed the US government about 720 healthcare data breaches affecting a total of 186 million user records.
Related: Orthanc Server Vulnerability Poses Risk to Medical Data, Healthcare Operations
Related: Information of 120,000 Stolen in Ransomware Attack on Georgia Hospital
Related: Information of 883,000 Stolen in Crippling Attack on Hospital Sisters Health System
