AMEOS Group

AMEOS Group, a major healthcare provider in Central Europe, experienced a security breach that exposed sensitive information of customers, employees, and partners. Despite extensive security measures, unauthorized access to IT systems led to potential misuse of data. The organization shut down all IT systems and network connections, reinforced security measures, and contracted external experts. Authorities were informed, and a criminal complaint was filed. Patients were advised to be vigilant against phishing attempts. No specific evidence of a data leak has been found, but the investigation is ongoing.

Source: https://www.bleepingcomputer.com/news/security/major-european-healthcare-network-discloses-security-breach/

TPRM report: https://www.rankiteo.com/company/ameos-gruppe

"id": "ame947072325",
"linkid": "ameos-gruppe",
"type": "Breach",
"date": "7/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'industry': 'Healthcare',
                        'location': ['Switzerland', 'Germany', 'Austria'],
                        'name': 'AMEOS Group',
                        'size': '18,000 employees',
                        'type': 'Healthcare Provider'}],
 'customer_advisories': ['remain vigilant against phishing and scam attempts'],
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'sensitive',
                 'type_of_data_compromised': ['patient data',
                                              'employee data',
                                              'partner data',
                                              'contact information']},
 'description': 'AMEOS Group, a healthcare provider, suffered a security '
                'breach that may have exposed customer, employee, and partner '
                'information.',
 'impact': {'data_compromised': ['patient data',
                                 'employee data',
                                 'partner data',
                                 'contact information'],
            'identity_theft_risk': True,
            'systems_affected': ['IT systems']},
 'investigation_status': 'ongoing',
 'regulatory_compliance': {'regulations_violated': ['GDPR'],
                           'regulatory_notifications': ['data protection '
                                                        'authorities in the '
                                                        'countries']},
 'response': {'communication_strategy': ['published a statement on its website',
                                         'advised patients to remain vigilant '
                                         'against phishing and scam attempts'],
              'containment_measures': ['shut down all IT systems',
                                       'terminated all external and internal '
                                       'network connections'],
              'incident_response_plan_activated': True,
              'law_enforcement_notified': True,
              'third_party_assistance': ['external IT and forensic experts']},
 'title': 'AMEOS Group Data Breach',
 'type': 'Data Breach'}

AMEOS Group

PowerSchool Holdings Inc. and Bain Capital: Bain Struggles to Dismiss PowerSchool User Data Breach Claims

Navigate360: Massive Data Breach: 8 Million Confidential Tips Exposed

Nice-Pak Products Inc.: Nice-Pak Data Breach Class Action Settlement