Huntsville Hospital Health System Notifies Patients of Data Exposure from Cerner Breach
Huntsville Hospital Health System informed patients on June 26, 2026, about a data exposure stemming from a 2025 breach on Cerner's (now Oracle Health) legacy systems. The breach, which occurred on January 22, 2025, exposed personal and medical information. Cerner had notified its healthcare clients, including Huntsville Hospital, on August 12, 2025, but patient notification was delayed at the request of law enforcement.
Huntsvillehospital
- Domain
- huntsvillehospital.org
- Sector
- Health Care and Social Assistance
- Signals
- 1 linked
Signal context
First seen: Jun 26, 2026
Last updated: Jun 26, 2026
Status: Public signal
Key points
- Third-party breach involving Cerner/Oracle Health legacy systems.
- Unauthorized access on January 22, 2025.
- Exposed names, Social Security numbers, medical record numbers, diagnoses, medications, test results, images, and treatment plans.
Signal analysis
BetaThis analysis groups the signal by industry, likely incident action and impacted security area. It helps compare this signal with other published signals without treating the labels as final determinations.
Sector: Health Care and Social Assistance
Likely country: Location not provided
Watch internet-facing systems, credential abuse and exploit activity.
- Source type: outside the affected organization
Impact area: Confidentiality
Likely asset: User or customer data
- 13 signals in the same sector
- 94 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
Third-party data breach exposed patient information at Huntsville Hospital facilitieshttps://consent.youtube.com/ml?continue=https://www.youtube.com/c/WZDXNewsFOX54?cbrd%3D1&gl=NL&hl=nl&cm=2&pc=yt&src=1&escs=AZ8E49CtCXP5AA2EAj0EiC_7OFbmlsUnGmQ2jKeTtX-rJCSqnvUyIjkisKZ_Q2pA4u0r3wUsIBwPIZjbMVVbu4ZFnCuXOmmgU-gvPublic source from consent.youtube.com.
Cerner Security Incident 2026 - Marshall Health Networkhttps://marshallhealthnetwork.org/cerner-security-incidentPublic source from marshallhealthnetwork.org.
Related signals
Grouped by why the signal is relevant.
ACLA Data Breach Exposes Social Security Numbers and Medical Information
Anatomic and Clinical Laboratory Associates P.C. (ACLA) disclosed a data breach involving unauthorized access to its computer network. The breach, discovered in December 2025, exposed personally identifiable information (names, dates of birth, Social Security numbers, taxpayer identification numbers) and protected health information (medical dates of service, diagnoses, medical history) for 69 Massachusetts residents.
Horizon Family Medical Group Data Breach
Reports emerged on June 18, 2026, of a possible data breach at Horizon Family Medical Group, a medical provider in New York's Hudson Valley region. Threat actor Incransom claimed to have stolen 7 TB of data, including medical information such as diagnoses, prescriptions, treatments, and lab results.
One Medical Seniors Data Breach Exposes Patient Records
One Medical Seniors, the primary care division of Amazon-owned One Medical (formerly Iora Health), experienced a data breach that occurred between June 8 and June 11, 2026. An unauthorized party gained access to a third-party file storage system containing archived patient data. One Medical identified the unauthorized access on June 13, 2026. The ShinyHunters data extortion group claimed responsibility for the breach, alleging the exfiltration of 8.8 terabytes of data. The exposed information includes demographic and clinical records of former Iora Health/One Medical Seniors patients across multiple U.S. locations, including Atlanta, Cape Cod, Charlotte, Piedmont Triad, Denver, Houston, Phoenix, Tucson, and Seattle.
iRhythm Confirms Data Stolen in Cyberattack, Ransom Demanded
Digital health company iRhythm Holdings confirmed a cyberattack involving certain third-party-hosted business applications. The company learned of the breach on June 8, 2026, which resulted in the theft of patient protected health information, proprietary data, and other personal data. Attackers subsequently demanded a ransom.
Aligned Orthopedic Partners discloses email environment data breach
Aligned Orthopedic Partners discovered unauthorized access to its email environment between November 16, 2025, and December 16, 2025. The breach exposed protected health information of 7,213 individuals, including names, dates of birth, Social Security numbers, and medical treatment information.
Tampa Bay Dental Implants & Prosthetics discloses ransomware attack and data exposure
Tampa Bay Dental discovered unauthorized access to its network on January 19, 2026, when ransomware was used to encrypt files on a legacy server containing a backup of electronic medical records. Patient data, including names, contact information, birth dates, treatment notes, clinical histories, and for some, Social Security numbers, was exposed.