Recently, Wyandot announced that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice shared on its website, Wyandot discovered unusual activity on its systems.1 As a result, Wyandot launched an investigation to determine the nature of the incident.
Through its investigation, Wyandot confirmed that sensitive personal information and protected health information in its systems may have been accessed or acquired by an unauthorized third party between September 21 and September 22, 2025. As a result, Wyandot began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. On November 5, 2025, Wyandot completed this review. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
Name
Social Security number
Date of birth
Patient ID
Medical record number
Health insurance information
Service date
Diagnosis/condition information
Provider name
Prescription information
Medical history information
On November 19, 2025, Wyandot posted notice of the breach on its website. Based on the website breach notice, Wyandot is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the website breach notice is below.
Source: https://straussborrelli.com/2025/12/03/wyandot-center-data-breach-investigation/
TPRM report: https://www.rankiteo.com/company/wyandot-memorial-hospital
"id": "wya1764815426",
"linkid": "wyandot-memorial-hospital",
"type": "Breach",
"date": "2025-12-03T00:00:00.000Z",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'incident': {'affected_entities': [{'customers_affected': None,
'industry': 'Healthcare',
'location': None,
'name': 'Wyandot',
'size': None,
'type': 'Healthcare Organization'}],
'customer_advisories': 'Breach notice posted on website with '
'details of impacted data and credit '
'monitoring services offered',
'data_breach': {'data_encryption': None,
'data_exfiltration': 'Potential (accessed or '
'acquired by unauthorized '
'third party)',
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal '
'Identifiable '
'Information (PII)',
'Protected Health '
'Information '
'(PHI)']},
'date_publicly_disclosed': '2025-11-19',
'description': 'Wyandot announced a data breach where sensitive '
'personal identifiable information (PII) and '
'protected health information (PHI) may have been '
'compromised. Unusual activity was detected on '
'its systems, leading to an investigation that '
'confirmed unauthorized access or acquisition of '
'data between September 21 and September 22, '
'2025. The impacted information varies per '
'individual but includes names, Social Security '
'numbers, dates of birth, patient IDs, medical '
'record numbers, health insurance details, '
'service dates, diagnosis/condition information, '
'provider names, prescription details, and '
'medical history. Wyandot completed its review on '
'November 5, 2025, and posted a breach notice on '
'November 19, 2025, offering affected individuals '
'credit monitoring services.',
'impact': {'brand_reputation_impact': None,
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': ['Name',
'Social Security number',
'Date of birth',
'Patient ID',
'Medical record number',
'Health insurance information',
'Service date',
'Diagnosis/condition information',
'Provider name',
'Prescription information',
'Medical history information'],
'downtime': None,
'financial_loss': None,
'identity_theft_risk': 'High (PII and PHI exposed)',
'legal_liabilities': None,
'operational_impact': None,
'payment_information_risk': None,
'revenue_loss': None,
'systems_affected': None},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'Completed (review finalized on November '
'5, 2025)',
'post_incident_analysis': {'corrective_actions': None,
'root_causes': None},
'ransomware': {'data_encryption': None,
'data_exfiltration': None,
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'references': [{'date_accessed': None,
'source': 'Wyandot Breach Notice',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': None,
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Breach notice posted on '
'website (November 19, '
'2025) with details of '
'impacted data and '
'services offered',
'containment_measures': None,
'enhanced_monitoring': None,
'incident_response_plan_activated': True,
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': 'Complimentary credit '
'monitoring services for '
'affected individuals',
'remediation_measures': None,
'third_party_assistance': None},
'threat_actor': 'Unauthorized third party',
'title': 'Wyandot Data Breach Involving Sensitive Personal and '
'Protected Health Information',
'type': 'Data Breach'}}