Sandhills Medical Foundation Data Breach Exposes PII of Thousands, Notified One Year Later
In April 2026, Sandhills Medical Foundation notified impacted individuals of a data breach that occurred nearly a year earlier, on May 8, 2025. The incident exposed sensitive personally identifiable information (PII), including dates of birth, Social Security numbers, Individual Taxpayer Identification Numbers, driver’s license numbers, government-issued IDs, passport numbers, and financial data.
The delayed disclosure spanning nearly 11 months has raised concerns about breach response timelines and transparency. While the full scope of the attack remains under investigation, the exposure of such critical data heightens risks of identity theft and fraud for affected individuals.
The breach underscores persistent vulnerabilities in healthcare data security, particularly as organizations grapple with evolving cyber threats. No details on the attack vector or responsible parties have been publicly disclosed. The incident follows a pattern of delayed breach notifications in the sector, further straining trust in data protection practices.
Sandhills Medical Foundation cybersecurity rating report: https://www.rankiteo.com/company/sandhills-medical-foundation
"id": "SAN1777927155",
"linkid": "sandhills-medical-foundation",
"type": "Breach",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Thousands',
'industry': 'Healthcare',
'name': 'Sandhills Medical Foundation',
'type': 'Healthcare'}],
'customer_advisories': 'Notification sent to impacted individuals in April '
'2026',
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Dates of birth',
'Social Security numbers',
'Individual Taxpayer '
'Identification Numbers',
'Driver’s license numbers',
'Government-issued IDs',
'Passport numbers',
'Financial data']},
'date_detected': '2025-05-08',
'date_publicly_disclosed': '2026-04-01',
'description': 'In April 2026, Sandhills Medical Foundation notified impacted '
'individuals of a data breach that occurred nearly a year '
'earlier, on May 8, 2025. The incident exposed sensitive '
'personally identifiable information (PII), including dates of '
'birth, Social Security numbers, Individual Taxpayer '
'Identification Numbers, driver’s license numbers, '
'government-issued IDs, passport numbers, and financial data. '
'The delayed disclosure spanning nearly 11 months has raised '
'concerns about breach response timelines and transparency. '
'While the full scope of the attack remains under '
'investigation, the exposure of such critical data heightens '
'risks of identity theft and fraud for affected individuals. '
'The breach underscores persistent vulnerabilities in '
'healthcare data security, particularly as organizations '
'grapple with evolving cyber threats. No details on the attack '
'vector or responsible parties have been publicly disclosed.',
'impact': {'brand_reputation_impact': 'Strained trust in data protection '
'practices',
'data_compromised': 'Sensitive personally identifiable information '
'(PII)',
'identity_theft_risk': 'Heightened risks of identity theft and '
'fraud'},
'investigation_status': 'Under investigation',
'lessons_learned': 'Persistent vulnerabilities in healthcare data security '
'and the importance of timely breach notifications',
'response': {'communication_strategy': 'Delayed disclosure (11 months)'},
'title': 'Sandhills Medical Foundation Data Breach Exposes PII of Thousands, '
'Notified One Year Later',
'type': 'Data Breach'}