25% off all training courses Offer ends May 29, 2026
View HIPAA Courses
Learner Login Learner Support
Learner Login Learner Support
25% off all training courses
View HIPAA Courses
Offer ends May 29, 2026

The HIPAA Journal is the leading provider of HIPAA training, news, regulatory updates, and independent compliance advice.

Montana Mental Health Center Announces 87,000-Record Data Breach

Posted By on Jul 22, 2025

Western Montana Mental Health Center has notified almost 87,000 individuals about a September 2024 cyberattack, and Olde Towne Medical and Dental Center has announced that it fell victim to an Inc Ransom ransomware attack in May 2025.

Western Montana Mental Health Center

Western Montana Mental Health Center (WMMHC), a provider of community mental health services at 15 locations throughout western Montana, announced a security incident on July 17, 2025, that involved unauthorized access to the protected health information of up to 86,758 individuals.

An investigation was launched on September 15, 2024, in response to an incident that caused network disruption. Assisted by third-party cybersecurity experts, WMMHC determined there had been unauthorized access to its network. The notification letters do not state when hackers first gained access to its network.

A review of files on the compromised parts of the network was initiated and concluded on May 27, 2025. The exposed data included names, Social Security numbers, driver’s license numbers, dates of birth, state or federal identification numbers, medical information, financial account information, and/or health insurance information. Notification letters were mailed to the affected individuals on July 17, 2025, and at the time, no misuse of patient data had been identified.

Get The FREE
HIPAA Compliance Checklist

Immediate Delivery of Checklist Link To Your Email Address

Please Enter Correct Email Address

Your Privacy Respected

HIPAA Journal Privacy Policy

As a precaution against identity theft and fraud, individuals whose Social Security numbers were exposed have been offered complimentary credit monitoring and identity theft protection services. WMMHC confirmed that additional security measures have been implemented to harden the security of its digital environment.

Olde Towne Medical and Dental Center, Virginia

Williamsburg Area Medical Assistance Corporation, doing business as Olde Towne Medical and Dental Center (OTMDC) in Williamsburg, Virginia, has recently announced a cyberattack that involved unauthorized access to the protected health information of up to 2,567 individuals.

OTMDC opted for full transparency about the incident, disclosing the cause of the data breach in its notification letters, something that is becoming increasingly rare for healthcare data breaches. OTMDC explained that a ransom note was received from the Inc Ransom ransomware group on or around May 15, 2025, demanding payment following an attack that targeted its computer system. Computer systems were immediately shut down to prevent further unauthorized access, and third-party cybersecurity experts were engaged to investigate the incident, restore the functionality of its computer systems, and help secure those systems from further attacks.

“This unfortunate incident was a surprise, and we are deeply frustrated by the interruption in clinic services to patients and for the possible limited exposure of their health information,” explained OTMDC CEO and Executive Director Aaron Thompson in the data breach notice. “We apologize to our patients for any concern this situation may cause. We value them and their privacy and are doing what we can to ensure their information is safe moving forward.”

OTMDC has confirmed that the clinic is fully operational, and networks have been restored. Technical security measures have been enhanced, and additional safeguards and security protocols have been implemented to better secure its servers and patient files from further attacks. OTMDC had encrypted its electronic medical record system; therefore, no electronic health records could be accessed by the ransomware group. Imaging and consultant reports containing patient names and diagnoses were accessible and may have been obtained in the attack.

OTMDC has mailed notification letters to the affected individuals and has offered them credit monitoring and identity theft protection services, which include fraud consultation and identity restoration services. Cybersecurity experts have also been retained to monitor the Internet and dark web for signs of data exposure or misuse.

Author: Steve Alder is the editor-in-chief of The HIPAA Journal. Steve is responsible for editorial policy regarding the topics covered in The HIPAA Journal. He is a specialist on healthcare industry legal and regulatory affairs, and has 10 years of experience writing about HIPAA and other related legal topics. Steve has developed a deep understanding of regulatory issues surrounding the use of information technology in the healthcare industry and has written hundreds of articles on HIPAA-related topics. Steve shapes the editorial policy of The HIPAA Journal, ensuring its comprehensive coverage of critical topics. Steve Alder is considered an authority in the healthcare industry on HIPAA. The HIPAA Journal has evolved into the leading independent authority on HIPAA under Steve’s editorial leadership. Steve manages a team of writers and is responsible for the factual and legal accuracy of all content published on The HIPAA Journal. Steve holds a Bachelor’s of Science degree from the University of Liverpool. You can connect with Steve via LinkedIn or email via stevealder(at)hipaajournal.com

x

Is Your Organization HIPAA Compliant?

Find Out With Our Free HIPAA Compliance Checklist

Get Free Checklist