MCC Reports Data Breach Impacting Sensitive Health and Personal Information
MCC recently disclosed a data breach involving unauthorized access to its computer network, potentially compromising sensitive personal identifiable information (PII) and protected health information (PHI). The incident came to light on December 8, 2025, when MCC detected unauthorized activity on its systems. An investigation revealed that an unauthorized third party accessed and exfiltrated files between November 22 and December 6, 2025.
The exposed data varies by individual but may include names, medical records, and health insurance details. Following the breach, MCC conducted a review to identify affected individuals and the scope of compromised information.
On February 6, 2026, MCC published a breach notice on its website and filed an official report with the U.S. Department of Health and Human Services’ Office for Civil Rights. As part of its response, MCC is offering affected individuals complimentary credit monitoring services and a detailed breakdown of the impacted data types.
Source: https://straussborrelli.com/2026/02/24/marin-cancer-care-data-breach-investigation/
McCANN New York cybersecurity rating report: https://www.rankiteo.com/company/mccannnewyork
"id": "MCC1772132592",
"linkid": "mccannnewyork",
"type": "Breach",
"date": "2/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Individuals with exposed '
'PII/PHI',
'industry': 'Healthcare',
'name': 'MCC',
'type': 'Organization'}],
'customer_advisories': 'Offering complimentary credit monitoring services and '
'detailed breakdown of impacted data types',
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': ['Names',
'Medical records',
'Health insurance '
'details'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)']},
'date_detected': '2025-12-08',
'date_publicly_disclosed': '2026-02-06',
'description': 'MCC recently disclosed a data breach involving unauthorized '
'access to its computer network, potentially compromising '
'sensitive personal identifiable information (PII) and '
'protected health information (PHI). The incident came to '
'light on December 8, 2025, when MCC detected unauthorized '
'activity on its systems. An investigation revealed that an '
'unauthorized third party accessed and exfiltrated files '
'between November 22 and December 6, 2025. The exposed data '
'varies by individual but may include names, medical records, '
'and health insurance details.',
'impact': {'data_compromised': 'Sensitive personal identifiable information '
'(PII) and protected health information (PHI)',
'identity_theft_risk': 'High',
'systems_affected': 'Computer network'},
'investigation_status': 'Completed (initial investigation)',
'references': [{'source': 'MCC Breach Notice'}],
'regulatory_compliance': {'regulations_violated': ['HIPAA'],
'regulatory_notifications': 'Filed report with U.S. '
'Department of Health '
'and Human Services’ '
'Office for Civil '
'Rights'},
'response': {'communication_strategy': 'Breach notice published on website '
'and filed report with U.S. Department '
'of Health and Human Services’ Office '
'for Civil Rights'},
'threat_actor': 'Unauthorized third party',
'title': 'MCC Data Breach Impacting Sensitive Health and Personal Information',
'type': 'Data Breach'}