U.S. Department of Health and Human Services
Office for Civil Rights
Breach Portal: Notice to the Secretary of HHS Breach of Unsecured Protected Health Information

Person sitting at a laptop


As required by section 13402(e)(4) of the HITECH Act, the Secretary must post a list of breaches of unsecured protected health information affecting 500 or more individuals. The following breaches have been reported to the Secretary:

Cases Currently Under Investigation
This page lists all breaches reported within the last 24 months that are currently under investigation by the Office for Civil Rights.
  Show Advanced Options
We are generating the report for you. Please wait......

ExcelPDFCSVXML
Breach Report Results
Expand AllName of Covered EntityStateCovered Entity TypeIndividuals AffectedBreach Submission DateType of BreachLocation of Breached Information
American Healthcare Systems LLC dba Randolph Health NCHealthcare Provider89904/10/2024Hacking/IT IncidentEmailNo
The Epilepsy Foundation of Metro New YorkNYHealthcare Provider385204/08/2024Hacking/IT IncidentNetwork ServerNo
Group Health Cooperative of South Central WisconsinWIHealth Plan53380904/08/2024Hacking/IT IncidentNetwork ServerNo
Sleep Management InstituteOHHealthcare Provider50004/05/2024Hacking/IT IncidentNetwork ServerNo
Gaia Software, LLCCOBusiness Associate5667604/05/2024Hacking/IT IncidentNetwork ServerYes
ZSFG Hospital and Trauma CenterCAHealthcare Provider75504/04/2024LossPaper/FilmsNo
Cattaraugus-Allegany Board of Cooperative Education ServicesNYBusiness Associate1520304/04/2024Hacking/IT IncidentNetwork ServerYes
Advanced Care Hospital of MontanaMTHealthcare Provider233104/02/2024Hacking/IT IncidentNetwork ServerYes
Continuum Health Alliance, LLCNJBusiness Associate132804/01/2024Hacking/IT IncidentNetwork ServerYes
Rutgers Robert Wood Johnson Medical SchoolNJHealthcare Provider54304/01/2024Unauthorized Access/DisclosureEmailNo
Otolaryngology Associates, LLCINHealthcare Provider31680204/01/2024Hacking/IT IncidentNetwork ServerNo
Northern Virginia Oral, Maxillofacial & Implant Surgery VAHealthcare Provider433303/29/2024Hacking/IT IncidentNetwork ServerNo
PRATT MRI LLCKSBusiness Associate426503/29/2024LossOther Portable Electronic DeviceYes
South Texas Rehabilitation HospitalTXHealthcare Provider413003/29/2024Hacking/IT IncidentNetwork ServerYes
Rehabilitation Hospital of Northern IndianaINHealthcare Provider164303/29/2024Hacking/IT IncidentNetwork ServerYes
Rehabilitation Hospital of Northern Arizona AZHealthcare Provider328703/29/2024Hacking/IT IncidentNetwork ServerYes
Mesquite Rehabilitation Institute TXHealthcare Provider331703/29/2024Hacking/IT IncidentNetwork ServerYes
Northern Utah Rehabilitation HospitalUTHealthcare Provider347703/29/2024Hacking/IT IncidentNetwork ServerYes
Northern Idaho Advanced Care HospitalIDHealthcare Provider560603/29/2024Hacking/IT IncidentNetwork ServerYes
Mesquite Specialty Hospital TXHealthcare Provider124403/29/2024Hacking/IT IncidentNetwork ServerYes
Laredo Specialty HospitalTXHealthcare Provider124203/29/2024Hacking/IT IncidentNetwork ServerYes
Laredo Rehabilitation HospitalTXHealthcare Provider178503/29/2024Hacking/IT IncidentNetwork ServerYes
Elkhorn Valley Rehabilitation HospitalWYHealthcare Provider363603/29/2024Hacking/IT IncidentNetwork ServerYes
Spartanburg Rehabilitation InstituteSCHealthcare Provider450603/29/2024Hacking/IT IncidentNetwork ServerYes
Weslaco Regional Rehabilitation HospitalTXHealthcare Provider278103/29/2024Hacking/IT IncidentNetwork ServerYes
Utah Valley Rehabilitation HospitalUTHealthcare Provider164203/29/2024Hacking/IT IncidentNetwork ServerYes
Trustpoint Rehabilitation Hospital of LubbockTXHealthcare Provider901403/29/2024Hacking/IT IncidentNetwork ServerYes
Denver Regional Rehabilitation HospitalCOHealthcare Provider84803/29/2024Hacking/IT IncidentNetwork ServerYes
Summa Rehabilitation HospitalOHHealthcare Provider298603/29/2024Hacking/IT IncidentNetwork ServerYes
Bloomington Regional Rehabilitation HospitalINHealthcare Provider119103/29/2024Hacking/IT IncidentNetwork ServerYes
Rehabilitation Hospital of the NorthwestIDHealthcare Provider382103/29/2024Hacking/IT IncidentNetwork ServerYes
Rehabilitation Hospital of Southern New MexicoNMHealthcare Provider546603/29/2024Hacking/IT IncidentNetwork ServerYes
Bakersfield Rehabilitation HospitalCAHealthcare Provider85203/29/2024Hacking/IT IncidentNetwork ServerYes
Rehabilitation Hospital of Southern CaliforniaCAHealthcare Provider92503/29/2024Hacking/IT IncidentNetwork ServerYes
Rehabilitation Hospital of Northwest OhioOHHealthcare Provider367103/29/2024Hacking/IT IncidentNetwork ServerYes
Northern Colorado Rehabilitation HospitalCOHealthcare Provider88503/29/2024Hacking/IT IncidentNetwork ServerYes
New Braunfels Regional Rehabilitation HospitalTXHealthcare Provider538403/29/2024Hacking/IT IncidentNetwork ServerYes
Mountain Valley Regional Rehabilitation HospitalAZHealthcare Provider596303/29/2024Hacking/IT IncidentNetwork ServerYes
Advanced Care Hospital of Southern New MexicoNMHealthcare Provider116203/29/2024Hacking/IT IncidentNetwork ServerYes
Midlands Regional Rehabilitation HospitalSCHealthcare Provider201803/29/2024Hacking/IT IncidentNetwork ServerYes
Lafayette Regional Rehabilitation HospitalINHealthcare Provider286103/29/2024Hacking/IT IncidentNetwork ServerYes
Greenwood Regional Rehabilitation HospitalSCHealthcare Provider582303/29/2024Hacking/IT IncidentNetwork ServerYes
Corpus Christi Rehabilitation HospitalTXHealthcare Provider358103/29/2024Hacking/IT IncidentNetwork ServerYes
HighmarkPAHealth Plan535603/29/2024Unauthorized Access/DisclosurePaper/FilmsNo
Florida Pediatric Associates, LLC FLHealthcare Provider110403/28/2024Hacking/IT IncidentNetwork ServerYes
Strive Holdco, LLCTXHealthcare Provider50103/28/2024Unauthorized Access/DisclosureNetwork ServerNo
UT Southwestern Medical CenterTXHealthcare Provider195603/27/2024Unauthorized Access/DisclosureNetwork ServerNo
Baytown Medical Center, L.P.TXHealthcare Provider150003/25/2024Unauthorized Access/DisclosureNetwork ServerNo
Pembina County Memorial HospitalNDHealthcare Provider2381103/25/2024Hacking/IT IncidentNetwork ServerNo
Family Health Center MIHealthcare Provider3324003/24/2024Hacking/IT IncidentNetwork ServerNo
Robert Peterson DD.S. PCORHealthcare Provider650003/23/2024TheftPaper/FilmsNo
Designed Receivable Solutions, Inc.CABusiness Associate12958403/23/2024Hacking/IT IncidentNetwork ServerYes
Human Development Services of Westchester, Inc.NYHealthcare Provider50603/23/2024Hacking/IT IncidentEmailNo
Mary H. Makhlouf, DMD, MS, PANCHealthcare Provider179703/22/2024Hacking/IT IncidentNetwork ServerNo
Ethos, also known as Southwest Boston Senior ServicesMABusiness Associate1450303/22/2024Hacking/IT IncidentNetwork ServerYes
Emergency Medical Services AuthorityOKHealthcare Provider61174303/22/2024Hacking/IT IncidentNetwork ServerNo
County of Los Angeles Department of Mental HealthCAHealthcare Provider140803/22/2024Hacking/IT IncidentEmailNo
Lakewood Medical Center, PCCOHealthcare Provider250003/21/2024Hacking/IT IncidentNetwork ServerNo
M&D Capital Premier Billing LLCNYBusiness Associate28432603/21/2024Hacking/IT IncidentNetwork ServerYes
City of ConneautOHHealthcare Provider77103/21/2024Hacking/IT IncidentEmailNo
Battle Mountain General HospitalNVHealthcare Provider300003/21/2024Hacking/IT IncidentDesktop Computer, Network ServerNo
Pomona Valley Hospital Medical CenterCAHealthcare Provider1334503/20/2024Hacking/IT IncidentNetwork ServerYes
Western New York Independent Living, Inc.NYHealthcare Provider288603/19/2024Hacking/IT IncidentNetwork ServerNo
Ezras Choilim Health Center, Inc.NYHealthcare Provider5986103/19/2024Hacking/IT IncidentNetwork ServerNo
Valley Oaks Health INHealthcare Provider5003403/18/2024Hacking/IT IncidentNetwork ServerNo
Bonney Forge CorporationPAHealth Plan67203/18/2024Hacking/IT IncidentNetwork ServerNo
RxBenefits, Inc. ALBusiness Associate339603/18/2024Unauthorized Access/DisclosurePaper/FilmsYes
Andor LabsNCHealthcare Provider50003/18/2024TheftLaptopNo
Sycamore Rehabilitation Services, Inc.INHealthcare Provider341403/18/2024Hacking/IT IncidentNetwork ServerNo
Weirton Medical CenterWVHealthcare Provider2679303/18/2024Hacking/IT IncidentNetwork ServerNo
Philips RespironicsPABusiness Associate112503/15/2024Hacking/IT IncidentNetwork ServerYes
Aveanna HealthcareGAHealthcare Provider6548203/15/2024Hacking/IT IncidentEmailNo
Cornerstone Healthcare Group Management Services LLCKYBusiness Associate50003/14/2024Hacking/IT IncidentNetwork ServerYes
California Correctional Health Care ServicesCAHealthcare Provider134803/14/2024Unauthorized Access/DisclosureEmailNo
Bronson Healthcare GroupMIHealthcare Provider159703/13/2024Unauthorized Access/DisclosureElectronic Medical RecordNo
Plymouth Tube Company Employee Benefit PlanILHealth Plan265203/13/2024Hacking/IT IncidentNetwork ServerNo
A5 PHARMACY INC.NYHealthcare Provider300003/13/2024Hacking/IT IncidentNetwork ServerNo
Lindsay Municipal HospitalOKHealthcare Provider50003/13/2024Hacking/IT IncidentEmailNo
Healthfirst (consisting of those plans under Healthfirst PHSP, Inc., Healthfirst Health Plan, Inc., and Healthfirst Insurance Company, Inc.NYHealth Plan683603/13/2024Unauthorized Access/DisclosureOtherNo
CCM HealthMNHealthcare Provider2876003/12/2024Hacking/IT IncidentNetwork ServerNo
R1 RCM Inc.ILBusiness Associate1612103/11/2024Hacking/IT IncidentNetwork ServerYes
Texas Health and Human Services EnterpriseTXHealth Plan339203/11/2024Unauthorized Access/DisclosureEmailNo
Rancho Family Medical Group, Inc.CAHealthcare Provider1048003/11/2024Hacking/IT IncidentNetwork ServerYes
Massachusetts Department of Developmental ServicesMAHealthcare Provider50003/11/2024Improper DisposalPaper/FilmsNo
UC San Diego Health Hillcrest- Hillcrest Medical CenterCAHealthcare Provider164203/08/2024Hacking/IT IncidentEmailNo
Orsini Pharmaceutical Services, LLCILHealthcare Provider143303/08/2024Hacking/IT IncidentEmailNo
Gunster, Yoakley, & Stewart, PAFLBusiness Associate955003/08/2024Hacking/IT IncidentNetwork ServerYes
Jewish Home Lifecare, Inc. NYHealthcare Provider50103/08/2024Hacking/IT IncidentNetwork ServerNo
CDC Dental Management, Co., LLC dba Kids Care Dental & OrthodonticsCAHealthcare Provider226003/07/2024Hacking/IT IncidentNetwork ServerNo
Dental Group of AmarilloTXHealthcare Provider382103/06/2024Hacking/IT IncidentNetwork ServerNo
Orthopedic Associates of Flower Mound PLLCTXHealthcare Provider175903/06/2024Hacking/IT IncidentEmailNo
Seaglass ChiropracticNJHealthcare Provider65003/06/2024TheftLaptop, Other Portable Electronic DeviceNo
University of Wisconsin Hospitals and Clinics Authority WIHealthcare Provider8590203/05/2024Hacking/IT IncidentEmailNo
BlueCross BlueShield of Tennessee, Inc. and Volunteer State Health Plan, Inc. d/b/a BlueCare Plus TennesseeTNHealth Plan125103/05/2024Hacking/IT IncidentNetwork ServerNo
Orlando VA Medical CenterFLHealthcare Provider985003/05/2024Unauthorized Access/DisclosureEmailNo
Philips RespironicsPABusiness Associate45715203/04/2024Hacking/IT IncidentNetwork ServerYes
Bay Surgical Specialists, LLCFLHealthcare Provider150503/04/2024Hacking/IT IncidentNetwork ServerYes
Lake of the Woods County Social ServicesMNHealthcare Provider53703/04/2024Hacking/IT IncidentNetwork ServerNo
Yakima Valley Radiology, PCWAHealthcare Provider23524903/01/2024Hacking/IT IncidentNetwork ServerNo
Cherry Street Services, Inc. d/b/a Cherry Health MIHealthcare Provider50002/29/2024Hacking/IT IncidentNetwork ServerNo
We are generating the report for you. Please wait......
  
U.S. Department of Health & Human Services - 200 Independence Avenue, S.W. - Washington, D.C. 20201 HHS Vulnerability Disclosure