"For residents and patients, the account information included first and last name, Social Security number, date of birth, Medicare number, or medical treatment and condition information. For those individuals who were not residents, personal information involved first and last name, in combination with one or more of the following data element(s): Social Security number, passport number, driver's license or state identity card information, medical information, health insurance information, and online log-in information corresponding with the individual whose email account was compromised."
"This was Methodist Homes' second data breach in less than a year. On January 30, 2025, they notified HHS of a breach that occurred between October 2 and October 14, 2024, that involved unauthorized access to their network. The incident was reported to HHS as affecting 908 patients. In October 2025, the Maine Attorney General's Office was notified that it affected 25,579 people."
Methodist Homes of Alabama and Northwest Florida reported a compromised employee email account accessed between May 8 and May 21, 2025. For residents and patients, the account contained names, Social Security numbers, dates of birth, Medicare numbers, and medical treatment and condition details. For non-residents, exposed elements included names combined with Social Security numbers, passport or driver’s license/state ID details, medical and health insurance information, and online log-in credentials tied to the compromised account. The total number affected has not been disclosed and the incident did not appear on HHS's public breach tool. This marked Methodist Homes’ second breach within a year following an October 2024 network incident initially reported as affecting 908 patients and later notified to the Maine Attorney General as affecting 25,579 people.
Read at DataBreaches.Net
Unable to calculate read time
Collection
[
|
...
]