Emanuel Medical Center Discloses Data Breach Affecting Patient Records
Emanuel Medical Center (EMC), a nonprofit hospital in Georgia operated by the Emanuel County Hospital Authority, reported a data breach that occurred in May 2025, exposing sensitive patient information. The facility confirmed the incident last week and has begun notifying affected individuals in compliance with HIPAA, offering identity theft protection and credit monitoring services.
The breach compromised a range of personal data, including names, dates of birth, Social Security numbers, health insurance details, and driver’s license numbers. Additionally, hackers accessed medical records for some patients, which may contain diagnoses, treatment histories, prescriptions, and lab results. The exact scope of exposed records varies by individual, and while it remains unclear whether files were exfiltrated, unauthorized access typically suggests potential theft.
EMC did not disclose how the attackers gained entry or the full extent of the breach. The total number of affected individuals has not been released but will eventually appear on the U.S. Department of Health and Human Services’ (HHS) data breach tracker once submitted. The incident highlights ongoing cybersecurity risks in healthcare, where sensitive data remains a prime target for malicious actors.
Emanuel Medical Center TPRM report: https://www.rankiteo.com/company/emanuel-medical-center-ga
"id": "ema1771975271",
"linkid": "emanuel-medical-center-ga",
"type": "Breach",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'Georgia, USA',
'name': 'Emanuel Medical Center (EMC)',
'type': 'Hospital'}],
'customer_advisories': 'Notifying affected individuals, offering identity '
'theft protection and credit monitoring services',
'data_breach': {'personally_identifiable_information': ['Names',
'Dates of birth',
'Social Security '
'numbers',
'Health insurance '
'details',
'Driver’s license '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)']},
'date_detected': '2025-05',
'description': 'Emanuel Medical Center (EMC), a nonprofit hospital in Georgia '
'operated by the Emanuel County Hospital Authority, reported a '
'data breach that occurred in May 2025, exposing sensitive '
'patient information. The breach compromised personal data, '
'including names, dates of birth, Social Security numbers, '
'health insurance details, driver’s license numbers, and '
'medical records for some patients.',
'impact': {'data_compromised': 'Sensitive patient information, including '
'names, dates of birth, Social Security '
'numbers, health insurance details, driver’s '
'license numbers, medical records (diagnoses, '
'treatment histories, prescriptions, lab '
'results)',
'identity_theft_risk': 'High'},
'references': [{'source': 'U.S. Department of Health and Human Services’ '
'(HHS) data breach tracker'}],
'regulatory_compliance': {'regulations_violated': ['HIPAA'],
'regulatory_notifications': ['U.S. Department of '
'Health and Human '
'Services’ (HHS) data '
'breach tracker']},
'response': {'communication_strategy': 'Notifying affected individuals in '
'compliance with HIPAA, offering '
'identity theft protection and credit '
'monitoring services'},
'title': 'Emanuel Medical Center Data Breach Affecting Patient Records',
'type': 'Data Breach'}