A new round of data breaches has struck multiple healthcare entities — from specialty clinics to a national RCM firm — underscoring the industry’s ongoing cybersecurity challenges.
Pittsburgh Gastroenterology Associates suffered an August ransomware attack by the Sinobi group, resulting in the theft of 198 GB of data containing patient demographics and treatment details. The clinic has since tightened its security protocols.
In Maine, NAHGA Claims Services — a national third-party claims administrator — reported unauthorized network access in April 2025 that may have compromised sensitive client data. The company is offering credit monitoring and identity theft protection to affected individuals.
Meanwhile, Texas-based Legacy Health, which manages revenue cycle operations for over 12,000 providers, disclosed a separate breach affecting at least 4,000 Texas residents. The incident exposed medical and insurance information, though full details remain under investigation.