CenterWell Home Health Reports Potential Data Breach Affecting Patient Information
CenterWell Home Health, a home health provider with a location in Lubbock, disclosed a potential data breach involving unauthorized access to patient information through a third-party vendor, Doctor Alliance. The incident was announced on February 12, following an investigation into suspicious activity detected in November 2025.
Between October 31 and November 17, 2025, an unauthorized party accessed Doctor Alliance’s system, which facilitates electronic form signing for physician approvals and Medicare billing. The breach was discovered on November 13, prompting immediate action including halting unauthorized access, resetting passwords, and engaging external cybersecurity experts.
While the investigation found no evidence that patient data was misused, exposed files may have included sensitive details such as names, addresses, dates of birth, clinical records, treatment information, and physician orders. Doctor Alliance has since strengthened its security measures, implementing multi-factor authentication, stricter access controls, enhanced monitoring, and improved threat detection.
Affected patients were advised to review medical statements for irregularities and report any suspicious activity to CenterWell. Doctor Alliance set up a dedicated helpline (1-800-608-5368) for inquiries, with TTY support available at 1-800-833-3301. The incident underscores the risks of third-party data exposure in healthcare systems.
CenterWell Home Health cybersecurity rating report: https://www.rankiteo.com/company/centerwell-home-health
"id": "CEN1773412811",
"linkid": "centerwell-home-health",
"type": "Breach",
"date": "10/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Patients',
'industry': 'Healthcare',
'location': 'Lubbock',
'name': 'CenterWell Home Health',
'type': 'Healthcare Provider'},
{'customers_affected': 'CenterWell Home Health patients',
'industry': 'Healthcare Services',
'name': 'Doctor Alliance',
'type': 'Third-party Vendor'}],
'attack_vector': 'Third-party vendor compromise',
'customer_advisories': 'Affected patients advised to review medical '
'statements for irregularities and report suspicious '
'activity',
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High (personally identifiable and '
'health-related information)',
'type_of_data_compromised': ['Names',
'Addresses',
'Dates of birth',
'Clinical records',
'Treatment information',
'Physician orders']},
'date_detected': '2025-11-13',
'date_publicly_disclosed': '2026-02-12',
'description': 'CenterWell Home Health disclosed a potential data breach '
'involving unauthorized access to patient information through '
'a third-party vendor, Doctor Alliance. The breach occurred '
'between October 31 and November 17, 2025, and was detected on '
'November 13, 2025. Exposed files may have included sensitive '
'patient details such as names, addresses, dates of birth, '
'clinical records, treatment information, and physician '
'orders.',
'impact': {'data_compromised': 'Patient information including names, '
'addresses, dates of birth, clinical records, '
'treatment information, and physician orders',
'identity_theft_risk': 'Potential risk due to exposure of '
'personally identifiable information',
'operational_impact': 'Immediate containment measures including '
'halting unauthorized access and resetting '
'passwords',
'systems_affected': 'Doctor Alliance’s system (electronic form '
'signing for physician approvals and Medicare '
'billing)'},
'investigation_status': 'Completed (no evidence of data misuse found)',
'lessons_learned': 'Risks of third-party data exposure in healthcare systems, '
'importance of enhanced security measures for vendors',
'post_incident_analysis': {'corrective_actions': 'Multi-factor '
'authentication, stricter '
'access controls, enhanced '
'monitoring, improved threat '
'detection',
'root_causes': 'Unauthorized access to third-party '
'vendor system'},
'recommendations': 'Review medical statements for irregularities, report '
'suspicious activity, implement multi-factor '
'authentication, stricter access controls, and enhanced '
'monitoring',
'references': [{'source': 'CenterWell Home Health Disclosure'}],
'response': {'communication_strategy': 'Advisories to affected patients, '
'dedicated helpline for inquiries',
'containment_measures': 'Halting unauthorized access, resetting '
'passwords',
'enhanced_monitoring': 'Yes',
'incident_response_plan_activated': 'Yes',
'remediation_measures': 'Implementation of multi-factor '
'authentication, stricter access '
'controls, enhanced monitoring, and '
'improved threat detection',
'third_party_assistance': 'External cybersecurity experts'},
'threat_actor': 'Unauthorized party',
'title': 'CenterWell Home Health Reports Potential Data Breach Affecting '
'Patient Information',
'type': 'Data Breach'}