Mainline Health Systems

Mainline Health Systems experienced a data breach in April 2024, affecting 101,104 individuals. The compromised data includes Social Security numbers, payment card numbers, Medicaid numbers, financial account information, and medical data. The ransomware gang INC claimed responsibility for the attack, uploading documents as proof. The delay in notifying victims was over a year, significantly above the average reporting time for healthcare organizations, putting patients' data at risk. Mainline is offering free credit monitoring and identity theft protection services to those affected.

Source: https://www.comparitech.com/news/mainline-health-systems-notifies-100k-people-of-a-data-breach-that-compromised-medical-info-financial-accounts/

TPRM report: https://scoringcyber.rankiteo.com/company/main-line-health

"id": "mai902062525",
"linkid": "main-line-health",
"type": "Ransomware",
"date": "6/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 101104,
                        'industry': 'Healthcare',
                        'location': 'Southeast Arkansas',
                        'name': 'Mainline Health Systems',
                        'type': 'Healthcare'}],
 'customer_advisories': 'Notifying affected individuals',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 101104,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Social Security numbers',
                                              'payment card numbers',
                                              'Medicaid numbers',
                                              'financial account information',
                                              'medical data']},
 'date_detected': '2024-04-10',
 'date_publicly_disclosed': '2025-09-01',
 'description': 'Mainline Health Systems experienced a data security incident '
                'on or about April 10, 2024, which resulted in a data breach '
                'affecting 101,104 people. The compromised data includes '
                'Social Security numbers, payment card numbers, Medicaid '
                'numbers, financial account information, and medical data. The '
                'ransomware gang INC claimed responsibility for the attack.',
 'impact': {'data_compromised': ['Social Security numbers',
                                 'payment card numbers',
                                 'Medicaid numbers',
                                 'financial account information',
                                 'medical data'],
            'identity_theft_risk': 'High',
            'payment_information_risk': 'High'},
 'investigation_status': 'Ongoing',
 'ransomware': {'data_exfiltration': True, 'ransomware_strain': 'INC'},
 'recommendations': ['Affected individuals should take up the offer of free '
                     'credit monitoring and identity theft protection '
                     'services.'],
 'references': [{'source': 'Comparitech'}],
 'response': {'communication_strategy': 'Notifying affected individuals',
              'third_party_assistance': ['IDX for Credit and CyberScan '
                                         'Monitoring']},
 'threat_actor': 'INC',
 'title': 'Mainline Health Systems Data Breach',
 'type': 'Data Breach, Ransomware'}