Cedar Point Health Data Breach Under Investigation After Sensitive Patient Data Exposed
Cedar Point Health, a Western Colorado-based healthcare provider serving Montrose County and surrounding areas, disclosed a data breach that compromised sensitive patient and employee information. The incident, detected on or around June 16, 2023, involved unauthorized access to systems containing personally identifiable and medical data.
The breach was officially reported to the Massachusetts Attorney General’s office on February 12, 2026, with Cedar Point Health publishing a notice on its website. The total number of affected individuals remains undisclosed.
Exposed data includes:
- Social Security numbers
- Addresses, dates of birth, and driver’s license/state ID numbers
- Financial account details
- Health insurance and medical records (including diagnoses, treatments, and procedures)
- Passport numbers
Class action law firm Shamis & Gentile P.A. is investigating potential claims on behalf of impacted individuals, who may be eligible for compensation. The firm is reviewing cases for those affected by the breach.
Source: https://www.claimdepot.com/investigations/cedar-point-health-data-breach-2026
Cedar Point Health TPRM report: https://www.rankiteo.com/company/cedar-point-health
"id": "ced1770935577",
"linkid": "cedar-point-health",
"type": "Breach",
"date": "6/2023",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'Western Colorado, Montrose County and '
'surrounding areas',
'name': 'Cedar Point Health',
'type': 'Healthcare Provider'}],
'customer_advisories': 'Notice published on company website',
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Social Security numbers',
'Addresses',
'Dates of birth',
'Driver’s license/state ID '
'numbers',
'Financial account details',
'Health insurance information',
'Medical records (diagnoses, '
'treatments, procedures)',
'Passport numbers']},
'date_detected': '2023-06-16',
'date_publicly_disclosed': '2026-02-12',
'description': 'Cedar Point Health, a Western Colorado-based healthcare '
'provider, disclosed a data breach that compromised sensitive '
'patient and employee information. The incident involved '
'unauthorized access to systems containing personally '
'identifiable and medical data.',
'impact': {'data_compromised': 'Sensitive patient and employee information, '
'including personally identifiable and medical '
'data',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential class action lawsuits',
'payment_information_risk': 'High'},
'investigation_status': 'Under Investigation',
'references': [{'source': 'Cedar Point Health Website'},
{'source': 'Massachusetts Attorney General’s Office'},
{'source': 'Shamis & Gentile P.A.'}],
'regulatory_compliance': {'legal_actions': 'Class action investigation by '
'Shamis & Gentile P.A.',
'regulatory_notifications': 'Reported to '
'Massachusetts Attorney '
'General’s office'},
'response': {'communication_strategy': 'Notice published on company website '
'and reported to Massachusetts '
'Attorney General’s office'},
'title': 'Cedar Point Health Data Breach',
'type': 'Data Breach'}