UT Southwestern Medical Center and St. David’s Health Care: Adaptive Home Health Data Breach Investigation

Adaptive Home Health Reports Data Breach Affecting Patient Information

Adaptive Home Health, a Texas-based provider of in-home health services—including physical therapy, wound care, and nursing—has disclosed a data breach that may have exposed sensitive personal and health information. The company, which serves over 2,000 patients weekly and partners with major healthcare institutions such as UT Southwestern Medical Center, Houston Methodist, and MD Anderson Cancer Center, reported the incident to the Texas Attorney General on January 6, 2026.

While full details of the breach remain undisclosed, the compromised data may include:

Personal identifiers (names, addresses, government-issued IDs)
Financial information (account or card numbers)
Protected health information (medical records, treatment details)

The exact number of affected individuals has not been determined. Adaptive has begun notifying impacted patients, though specifics about the breach’s origin or timeline are not yet public. The incident underscores ongoing risks to healthcare data security, particularly for providers handling sensitive patient records.

Source: https://straussborrelli.com/2026/01/06/adaptive-home-health-data-breach-investigation/

Southwestern Home Health cybersecurity rating report: https://www.rankiteo.com/company/southwestern-home-health

St Davids Health Care System cybersecurity rating report: https://www.rankiteo.com/company/st-davids-health-care-system

"id": "SOUST-1767740711",
"linkid": "southwestern-home-health, st-davids-health-care-system",
"type": "Breach",
"date": "1/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 'Undetermined number of '
                                              'individuals',
                        'industry': 'Healthcare',
                        'location': 'Richardson, Texas, USA',
                        'name': 'Standards Home Health, Inc. d/b/a Adaptive '
                                'Home Health',
                        'size': 'Serves over 2,000 patients weekly',
                        'type': 'Healthcare Services'}],
 'customer_advisories': 'Breach notification letters sent to impacted '
                        'individuals with steps to protect personal '
                        'information',
 'data_breach': {'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Financial information (account '
                                              'number, credit or debit card '
                                              'number)',
                                              'Government-issued ID number '
                                              '(passport, state ID card)',
                                              'Sensitive personal identifiable '
                                              'information',
                                              'Protected health information']},
 'date_publicly_disclosed': '2026-01-06',
 'description': 'Adaptive Home Health reported a data breach to the Attorney '
                'General of Texas in which sensitive personal identifiable '
                'information and protected health information may have been '
                'accessed by an unauthorized third party. The breach involved '
                'an undetermined number of individuals, with exposed data '
                'potentially including financial information, '
                'government-issued ID numbers, and other sensitive personal '
                'data.',
 'impact': {'data_compromised': 'Sensitive personal identifiable information '
                                'and protected health information',
            'identity_theft_risk': 'High',
            'payment_information_risk': 'High'},
 'investigation_status': 'Ongoing',
 'recommendations': ['Regularly review account statements for signs of fraud '
                     'or unauthorized activity',
                     'Enroll in free credit monitoring services provided by '
                     'the company',
                     'Contact a credit bureau(s) to request a temporary fraud '
                     'alert',
                     'Change passwords and security questions for online '
                     'accounts',
                     'Monitor credit reports for signs of identity theft',
                     'Carefully review the breach notice and retain a copy'],
 'references': [{'source': 'Attorney General of Texas Breach Report',
                 'url': 'https://oag.my.site.com/datasecuritybreachreport/apex/DataSecurityReportsPage'}],
 'regulatory_compliance': {'legal_actions': 'Potential (under investigation by '
                                            'Strauss Borrelli PLLC)',
                           'regulatory_notifications': 'Reported to Attorney '
                                                       'General of Texas'},
 'response': {'communication_strategy': 'Breach notification letters sent to '
                                        'impacted individuals',
              'third_party_assistance': 'Strauss Borrelli PLLC (data breach '
                                        'law firm)'},
 'title': 'Adaptive Home Health Data Breach',
 'type': 'Data Breach'}

UT Southwestern Medical Center and St. David’s Health Care: Adaptive Home Health Data Breach Investigation

IDrive: IDrive for Windows Vulnerability Allows Privilege Escalation Attacks

Synology: Synology DiskStation Manager Vulnerability Puts Users at Risk of Remote Command Execution Attacks

Cisco: Cisco Secure Firewall Vulnerability Exposes Systems to Remote Code Execution by Attackers