Midland Care Connection Inc. Discloses Data Breach Affecting Patient Information
Midland Care Connection Inc. (MCC), a Topeka, Kansas-based nonprofit healthcare provider, has reported a data breach involving unauthorized access to its computer network. The incident was detected on March 31, 2026, after unusual activity was observed, prompting an investigation with legal counsel and third-party forensic specialists.
The breach occurred on or around March 30, 2026, when unauthorized parties accessed and potentially copied sensitive data. A subsequent review, completed on June 12, 2026, determined that exposed information may include names, dates of birth, medical treatment details, health insurance data, financial account information, and Social Security numbers, though the exact scope of affected individuals remains undisclosed.
MCC began notifying impacted consumers on June 29, 2026, and filed a disclosure with the Nebraska Attorney General. A public notice was also posted on the organization’s website.
In response, MCC is offering 12 months of free credit monitoring, a single-bureau credit report, and credit score access to affected individuals, along with proactive fraud assistance. Those who did not receive a notification letter but suspect they may be impacted can contact MCC’s dedicated assistance line for verification.
Source: https://www.claimdepot.com/data-breach/midland-care-2026
Midland Care Connection, Inc. cybersecurity rating report: https://www.rankiteo.com/company/midland-care-inc.
"id": "MID1782851544",
"linkid": "midland-care-inc.",
"type": "Breach",
"date": "3/2026",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Healthcare',
'location': 'Topeka, Kansas, USA',
'name': 'Midland Care Connection Inc.',
'type': 'Nonprofit Healthcare Provider'}],
'attack_vector': 'Unauthorized Access',
'customer_advisories': 'Notification letters to affected individuals, '
'dedicated assistance line for verification',
'data_breach': {'data_exfiltration': 'Potentially copied',
'personally_identifiable_information': 'Names, dates of '
'birth, Social '
'Security numbers, '
'financial account '
'information, health '
'insurance data, '
'medical treatment '
'details',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Patient information'},
'date_detected': '2026-03-31',
'date_publicly_disclosed': '2026-06-29',
'description': 'Midland Care Connection Inc. (MCC), a Topeka, Kansas-based '
'nonprofit healthcare provider, reported a data breach '
'involving unauthorized access to its computer network. The '
'breach exposed sensitive patient information, including '
'names, dates of birth, medical treatment details, health '
'insurance data, financial account information, and Social '
'Security numbers.',
'impact': {'data_compromised': 'Names, dates of birth, medical treatment '
'details, health insurance data, financial '
'account information, Social Security numbers',
'identity_theft_risk': 'High',
'payment_information_risk': 'High',
'systems_affected': 'Computer network'},
'investigation_status': 'Completed',
'recommendations': 'Offering 12 months of free credit monitoring, '
'single-bureau credit report, credit score access, and '
'proactive fraud assistance to affected individuals',
'references': [{'source': 'Midland Care Connection Inc. Public Notice'}],
'regulatory_compliance': {'regulatory_notifications': 'Nebraska Attorney '
'General'},
'response': {'communication_strategy': 'Public notice on website, '
'notification letters to affected '
'individuals, filing with Nebraska '
'Attorney General',
'incident_response_plan_activated': 'Yes',
'third_party_assistance': 'Forensic specialists and legal '
'counsel'},
'title': 'Midland Care Connection Inc. Data Breach',
'type': 'Data Breach'}