Livingston HealthCare, Palo Verde Hematology and Oncology and Academic Urology & Urogynecology of Arizona: Academic Urology & Urogynecology of Arizona Data Breach Affects 73K Patients

Two Major Healthcare Data Breaches Expose Patient Information in 2025-2026

Two healthcare providers Academic Urology & Urogynecology of Arizona and Livingston HealthCare recently disclosed cybersecurity incidents affecting thousands of patients, with unauthorized access to sensitive medical and personal data.

Academic Urology & Urogynecology of Arizona Breach

Arizona-based Academic Urology & Urogynecology, a division of Palo Verde Hematology and Oncology, detected unauthorized network access on May 22, 2025. A forensic investigation later confirmed that attackers had accessed its systems between May 18 and May 22, 2025, potentially exposing the data of 73,281 patients.

Compromised information may include:

• Full names, dates of birth, and Social Security numbers
• Medical record numbers, diagnoses, treatment details, and prescription information
• Health insurance and financial account data

Notifications were sent to affected individuals on February 12, 2026, with no evidence of data misuse found at the time. As a precaution, the organization offered complimentary credit monitoring and identity theft protection.

Livingston HealthCare Cybersecurity Incident

Montana’s Livingston HealthCare, a critical access hospital serving Park County, reported a suspected cyberattack on February 13, 2026, disrupting phone systems and network operations. While some systems were taken offline for assessment, patient care remained uninterrupted. The phone system has since been restored, though network services remain limited.

The extent of data exposure is still under investigation, but the organization warned patients about fraudulent communications claiming compensation for the incident, urging caution against sharing sensitive information.

Both incidents highlight ongoing cybersecurity risks in the healthcare sector, with investigations continuing to assess the full impact.

Source: https://www.hipaajournal.com/academic-urology-urogynecology-of-arizona-data-breach/

Livingston HealthCare cybersecurity rating report: https://www.rankiteo.com/company/livingston-healthcare

Academic Urology and Urogynecology of Arizona cybersecurity rating report: https://www.rankiteo.com/company/academic-urology-and-urogynecology-of-arizona

Palo Verde Hospital cybersecurity rating report: https://www.rankiteo.com/company/palo-verde-hospital

"id": "LIVACAPAL1772317591",
"linkid": "livingston-healthcare, academic-urology-and-urogynecology-of-arizona, palo-verde-hospital",
"type": "Cyber Attack",
"date": "2/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': '73,281',
                        'industry': 'Healthcare',
                        'location': 'Arizona, USA',
                        'name': 'Academic Urology & Urogynecology of Arizona',
                        'type': 'Healthcare Provider'},
                       {'industry': 'Healthcare',
                        'location': 'Montana, USA',
                        'name': 'Livingston HealthCare',
                        'type': 'Hospital'}],
 'customer_advisories': 'Warnings about fraudulent communications claiming '
                        'compensation for the incident',
 'data_breach': {'number_of_records_exposed': '73,281',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Full names',
                                              'Dates of birth',
                                              'Social Security numbers',
                                              'Medical record numbers',
                                              'Diagnoses',
                                              'Treatment details',
                                              'Prescription information',
                                              'Health insurance data',
                                              'Financial account data']},
 'date_detected': ['2025-05-22', '2026-02-13'],
 'date_publicly_disclosed': ['2026-02-12'],
 'description': 'Two healthcare providers Academic Urology & Urogynecology of '
                'Arizona and Livingston HealthCare recently disclosed '
                'cybersecurity incidents affecting thousands of patients, with '
                'unauthorized access to sensitive medical and personal data.',
 'impact': {'data_compromised': 'Sensitive medical and personal data',
            'identity_theft_risk': 'High',
            'operational_impact': 'Disrupted phone systems and network '
                                  'operations',
            'payment_information_risk': 'High',
            'systems_affected': ['Network systems', 'Phone systems']},
 'investigation_status': 'Ongoing',
 'response': {'communication_strategy': 'Notifications sent to affected '
                                        'individuals; warnings about '
                                        'fraudulent communications',
              'containment_measures': 'Systems taken offline for assessment',
              'recovery_measures': 'Phone system restored, network services '
                                   'limited'},
 'title': 'Two Major Healthcare Data Breaches Expose Patient Information in '
          '2025-2026',
 'type': ['Data Breach', 'Cyberattack']}