Hackers breach healthcare firm, putting personal data of 113,575 Americans at risk, including names, Social Security numbers, financial account numbers, and additional sensitive information.
In a concerning turn of events, the Highlands Oncology Group, a leading cancer care provider based in Arkansas, has suffered a ransomware attack between January 21, 2025, and June 2, 2025. The breach was discovered on June 2, but notification to affected individuals and authorities occurred only on August 1, 2025.
Key details of the incident include:
- Over 113,000 individuals have been impacted, with potential exposure of sensitive personal and medical information such as names, dates of birth, Social Security numbers, driver’s licenses, passport numbers, credit/debit card numbers, financial accounts, medical treatment details, medical record numbers, patient account numbers, and health insurance information.
- The attack was identified as a ransomware incident, with the hacking group Medusa implicated.
- Highlands Oncology Group began notifying affected individuals by mail starting August 1, 2025, and also notified regulatory authorities including the Maine Attorney General’s Office.
- As a response, Highlands is offering 12 months of free identity theft protection and credit monitoring through Experian’s IdentityWorks service.
- The group has engaged forensic security experts, worked with law enforcement, and is reviewing security measures to prevent similar future incidents.
- The breach has drawn legal attention with investigations launched by law firms regarding potential violations of state and federal notification laws due to the delayed disclosure.
Highlands Oncology Group serves cancer patients mainly in Northwest Arkansas and is recognized as a regional leader in oncology care. The stolen information may now include financial account numbers in addition to the previously mentioned personal details.
This breach highlights ongoing cybersecurity risks in the healthcare sector, where personal health information is a prime target for cybercriminals, potentially leading to identity theft, medical fraud, and privacy violations.
The Daily Hodl, your go-to source for the future of finance, also covers this incident under Bitcoin, Ethereum, Trading, Altcoins, Futuremash, Financeflux, Blockchain, Regulators, Scams, Hacks & Breaches, and more. The article includes sections for Crypto Markets, Guest Post, Press Release, Sponsored Post, and Advertise submissions.
Highlands encourages patients to stay vigilant by reviewing their account statements and reporting any suspicious activity. The group continues to work diligently to address the implications of this incident and ensure the security of its patients' data.
[1] Highlands Oncology Group Breach Notice: https://www.highlandsoncology.com/breach-notice/ [2] Highlands Oncology Group Data Breach: https://www.arkansasonline.com/news/2025/aug/02/highlands-oncology-group-data-breach/ [3] Highlands Oncology Group Data Breach: Potential Violations of Laws: https://www.law360.com/articles/1489730/highlands-oncology-group-data-breach-potential-violations-of-laws [4] Medusa Ransomware Group: https://www.malwarebytes.com/ransomware/medusa/ [5] Experian IdentityWorks: https://www.experian.com/identityworks/
- The theft of sensitive personal and financial information from Highlands Oncology Group, a leading cancer care provider, could potentially lead to identity theft, medical fraud, and privacy violations, as the stolen data now includes financial account numbers.
- Due to the delayed disclosure of the data breach, law firms have launched investigations to examine potential violations of state and federal notification laws.
- In response to the incident, Highlands Oncology Group is offering 12 months of free identity theft protection and credit monitoring through Experian's IdentityWorks service.
- The group is also working with forensic security experts, law enforcement, and reviewing security measures to prevent similar future incidents, while encouraging patients to stay vigilant and review their account statements regularly.
