Cumberland County Hospital Cyberattack Affects 36,600 Patients
Cumberland County Hospital in Kentucky has reported a data breach involving the protected health information of More than 36,000 individuals. Ransomware groups have claimed responsibility for attacks on All Nations Health Center in Montana and The Health Trust in California.
Cumberland County Hospital
Cumberland County Hospital in Burkesville, Kentucky, has recently reported a data breach to the HHS’ Office for Civil Rights that has affected 36,659 individuals. Unauthorized access to its computer network was identified on April 3, 2025. The hospital immediately shut down all computers and disabled data sharing connections to prevent further unauthorized access and contain the incident. The intrusion was reported to law enforcement, and its IT team worked around the clock to safely and securely bring systems back online and implement additional security measures to prevent similar intrusions in the future.
Third-party cybersecurity experts assisted with the investigation and confirmed that a threat actor had access to its computer network between February 21, 2025, and April 3, 2025. During that time, there was unauthorized access to files containing patient information; however, its electronic medical record system was not accessed.
The file review confirmed that the compromised patient information included full name, address, phone number, email address, date of birth, race/ethnicity, diagnosis information, treatment information, treatment notes, dates of service, medical record number, Social Security number, health plan number, and claims/billing information. Employee data was also compromised in the incident, including names, W-4s, W-2s, bank account numbers, driver’s licenses, birth certificates, and background check information.
Get The FREE
HIPAA Compliance Checklist
Immediate Delivery of Checklist Link To Your Email Address
Please Enter Correct Email Address
Your Privacy Respected
HIPAA Journal Privacy Policy
Complimentary credit monitoring and identity theft protection services have been offered to the affected individuals for 12 months, and patients and employees are being encouraged to take advantage of those services. Notification letters were mailed to the affected individuals on June 2, 2025.
Ransomware Groups Claim Attacks on All Nations Health Center & The Health Trust
The Global ransomware group has claimed responsibility for an attack on All Nations Health Center, an health center in Missoula, MT, serving the Native American and broader Missoula communities. Global has threatened to publish the stolen data on June 8, 2025, if the ransom is not paid. Global is a relatively new threat group, and currently only has five listings on its data leak site, including another healthcare provider, Epworth Healthcare, a Victoria, Australia-based non-profit hospital group.
On or around June 5, 2025, the Qilin ransomware group added The Health Trust to its data leak site. The Health Trust is a San Jose, California-based healthcare conversion foundation focused on building health equity in Silicon Valley. Qilin issued a threat that it would publish the stolen data on June 17, 2025, if the ransom is not paid. A sample of the stolen data has been added to the data leak site.
