Wee Care Pediatrics Reports Data Breach Impacting Patient Records in Utah
On February 25, 2026, Wee Care Pediatrics, a Utah-based children’s healthcare provider with multiple locations, disclosed a cybersecurity incident that compromised sensitive patient data. An unauthorized actor accessed the organization’s network, potentially exfiltrating personally identifiable information (PII) and protected health information (PHI) of patients.
The exposed data includes:
- Names
- Dates of birth
- Social Security numbers
- Treatment and diagnosis details
- Prescription and medication records
- Dates of service
- Provider names
- Medical record and patient account numbers
- Medicare/Medicaid ID numbers
- Health insurance information
The breach is under investigation by Lynch Carpenter, LLP, a national class action law firm, which is reviewing potential legal claims on behalf of affected individuals. Wee Care has not yet disclosed the total number of impacted patients or the exact timeline of the intrusion. The incident highlights ongoing risks to healthcare data security, particularly for providers handling sensitive pediatric records.
Wee Care Therapy, Ltd. cybersecurity rating report: https://www.rankiteo.com/company/wee-care-therapy-ltd.
"id": "WEE1772046643",
"linkid": "wee-care-therapy-ltd.",
"type": "Breach",
"date": "2/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'Utah, USA',
'name': 'Wee Care Pediatrics',
'type': 'Healthcare Provider'}],
'data_breach': {'data_exfiltration': 'Potential',
'personally_identifiable_information': ['Names',
'Dates of birth',
'Social Security '
'numbers',
'Treatment and '
'diagnosis details',
'Prescription and '
'medication records',
'Dates of service',
'Provider names',
'Medical record and '
'patient account '
'numbers',
'Medicare/Medicaid ID '
'numbers',
'Health insurance '
'information'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally identifiable '
'information (PII)',
'Protected health information '
'(PHI)']},
'date_publicly_disclosed': '2026-02-25',
'description': 'Wee Care Pediatrics, a Utah-based children’s healthcare '
'provider, disclosed a cybersecurity incident that compromised '
'sensitive patient data, including personally identifiable '
'information (PII) and protected health information (PHI).',
'impact': {'data_compromised': 'Personally identifiable information (PII) and '
'protected health information (PHI)',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential legal claims under review by Lynch '
'Carpenter, LLP'},
'investigation_status': 'Ongoing',
'references': [{'source': 'Wee Care Pediatrics Disclosure'}],
'regulatory_compliance': {'legal_actions': 'Class action lawsuit under review',
'regulations_violated': ['HIPAA (potential)']},
'response': {'third_party_assistance': 'Lynch Carpenter, LLP (investigation)'},
'threat_actor': 'Unauthorized actor',
'title': 'Wee Care Pediatrics Data Breach Impacting Patient Records',
'type': 'Data Breach'}