Millions of patient records stolen from US Public Health System

Staff Editor 2026-05-19
Millions of patient records stolen from US Public Health System

Millions of patient records stolen from US Public Health System

https://www.cybersecurity-insiders.com/millions-of-patient-records-stolen-from-us-public-health-system/

Publish Date: 2026-05-19 01:34:00

Source Domain: www.cybersecurity-insiders.com

A massive cyberattack on the servers of the United States Public Health System has reportedly exposed the sensitive personal and medical information of millions of patients. According to the latest updates, hackers were able to gain unauthorized access to healthcare databases and steal more than 1.8 million patient records over a period stretching from November 2025 to February 2026. The breach is now being described as one of the most significant healthcare-related cyber incidents in recent years.

Reports indicate that the attackers managed to siphon highly confidential information belonging to US residents. The stolen data allegedly includes medical histories, insurance and payment information, passport details, email addresses, phone numbers, and Social Security Numbers (SSNs). More alarmingly, fingerprint scans were also compromised during the breach. Unlike passwords or payment cards that can be reset or replaced, biometric information such as fingerprints is permanent, making the long-term consequences of the breach particularly concerning for cybersecurity experts and affected individuals alike.

Officials confirmed that the cybercriminals specifically targeted the servers of the NYC Health + Hospitals Corporation, commonly referred to as NYCHHC. The organization is considered the largest public healthcare system in the United States and serves millions of residents across New York City through its extensive network of hospitals, clinics, and healthcare facilities. Because of its enormous patient database and critical healthcare infrastructure, the organization became an attractive target for sophisticated threat actors seeking valuable personal and medical data.

Investigators believe the attackers gained fraudulent access to internal systems and quietly extracted records over several months before the intrusion was detected. Security analysts warn that the stolen information could potentially be used for identity theft, financial…

Source

More Stories

Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI

Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI

Staff Editor 2026-06-06
Franklin Student is a Cyber Security Champ at Bridgewater State

Franklin Student is a Cyber Security Champ at Bridgewater State

Staff Editor 2026-06-06
CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

Staff Editor 2026-06-06

Terms and Conditions - Privacy Policy