Denton MHMR Center Data Breach Exposes Sensitive Information of Nearly 109,000 Individuals
In November 2025, Denton MHMR Center—a Texas-based mental health and developmental disabilities service provider—reported a significant data breach to the U.S. Department of Health and Human Services (HHS). The incident, discovered after unusual network activity was detected, revealed that an unauthorized threat actor accessed the organization’s systems between December 24 and 25, 2024.
The breach compromised the personal and medical data of 108,967 individuals nationwide. Exposed information may include names, addresses, Social Security numbers, bank account details, dates of birth, treating physicians, and sensitive diagnosis and treatment records. Denton MHMR Center, which serves Denton County and the Flower Mound area, provides critical services to vulnerable populations, including children, veterans, LGBTQ+ individuals, and those with co-occurring disorders.
The organization first posted a Notice of Data Breach on its website on February 21, 2025, with an update on December 30, 2025. The breach was officially reported to HHS on November 5, 2025. Legal firms, including Shamis & Gentile P.A., are investigating potential compensation claims for affected individuals.
The incident underscores the growing risks to healthcare providers handling sensitive patient data, particularly in behavioral health and disability services. No details on the attack vector or the threat actor’s identity have been disclosed.
Source: https://www.claimdepot.com/investigations/denton-county-mhmr-center-data-breach-2026
Denton County MHMR Center cybersecurity rating report: https://www.rankiteo.com/company/dentonmhmr
"id": "DEN1767633881",
"linkid": "dentonmhmr",
"type": "Breach",
"date": "12/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '108,967',
'industry': 'Healthcare (Mental Health & Developmental '
'Disabilities)',
'location': 'Denton, Texas, USA',
'name': 'Denton MHMR Center',
'type': 'Governmental Organization'}],
'attack_vector': 'Unauthorized network access',
'customer_advisories': 'Notice of Data Breach posted on website on 2025-02-21 '
'(Updated 2025-12-30)',
'data_breach': {'number_of_records_exposed': '108,967',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Name',
'Address',
'Social Security number',
'Bank account information',
'Date of birth',
'Treating physician',
'Diagnosis and treatment '
'information']},
'date_detected': '2024-12-24',
'date_publicly_disclosed': '2025-02-21',
'description': 'Denton MHMR Center reported a significant data breach '
'involving unauthorized access to its systems, exposing '
'sensitive personally identifiable information of 108,967 '
'individuals.',
'impact': {'data_compromised': 'Sensitive personally identifiable information',
'identity_theft_risk': 'High',
'payment_information_risk': 'High',
'systems_affected': "Denton MHMR Center's network systems"},
'investigation_status': 'Ongoing',
'recommendations': ['Enroll in free credit monitoring and identity protection '
'services',
'Monitor financial statements for suspicious activity',
'Place a fraud alert and request credit reports from '
'major credit bureaus',
'Seek legal help to understand rights and pursue '
'compensation'],
'references': [{'date_accessed': '2025-12-30',
'source': 'Denton MHMR Center Notice of Data Breach'}],
'regulatory_compliance': {'regulations_violated': ['HIPAA'],
'regulatory_notifications': ['Reported to U.S. '
'Department of Health '
'and Human Services on '
'2025-11-05']},
'response': {'communication_strategy': 'Notice of Data Breach posted on '
'website and reported to U.S. '
'Department of Health and Human '
'Services'},
'threat_actor': 'Unauthorized threat actor',
'title': 'Denton MHMR Center Data Breach',
'type': 'Data Breach'}