Healthcare technology company CareCloud revealed that hackers accessed one of its patient electronic health record storage environments during a data breach earlier this month.
The notification, submitted to the U.S. Securities and Exchange Commission last Friday, stated that the company noticed unauthorized access on March 16 to one of its six environments used for storing patient medical and healthcare records. Hackers had access for over eight hours, but it is unknown if data was exfiltrated or what types of data may have been compromised.
CareCloud believes hackers are no longer within its network after restoring systems the same day and has enlisted an unspecified cybersecurity firm to investigate.
The number of individuals affected by the breach remains undisclosed. CareCloud provides healthcare technology solutions, including electronic health record storage, to over 45,000 providers such as doctors and physicians across thousands of hospitals and medical practices, serving millions of patients according to its recent annual report.
Electronic health record providers attract financially motivated cybercriminals who steal personal data and demand ransoms. In 2024, Russian cybercriminals stole most of America’s health records in a ransomware attack on Change Healthcare, causing widespread outages and delays in healthcare services.
It remains uncertain if the cyberattack on CareCloud led to data destruction or if hackers have contacted the company with any demands. A CareCloud spokesperson did not respond to requests for comment. Inquiries were made regarding CareCloud’s data storage practices, such as whether patient data is distributed across its environments, or if some serve as backups for others. Updates will follow if more information is received.
CareCloud’s public internet records show that much of its files and data are hosted on Amazon Web Services.
In its SEC filing, CareCloud stated that by March 24, it had determined that the breach could materially impact its business, necessitating investor notification according to legal requirements. Although the breach is unlikely to affect the company’s financial standing, the investigation is still ongoing.
Do you have more information about CareCloud’s data breach? Are you a CareCloud employee familiar with its security practices? Contact this reporter via encrypted message at zackwhittaker.1337 on Signal.