
Medical device supplier AdaptHealth has disclosed that a social engineering cyberattack led to the theft of patient data, including protected health information and insurance billing credentials. The breach, traced to a compromised third-party contractor account, affected cloud-based patient management systems and EHR portals. The incident is contained, but the full scope of stolen data remains under investigation.
Medical device supplier AdaptHealth revealed last week that a cyberattack resulted in the theft of sensitive patient data. A threat actor used a social engineering attack to compromise a session linked to a third-party contractor, gaining unauthorized access to cloud-based patient management systems, document storage platforms, and external electronic health record portals. The stolen data includes personally identifiable information (PII), protected health information (PHI), and stored password files tied to insurance billing.
AdaptHealth confirmed the incident has been contained — the compromised account was disabled, credentials were reset, and additional access controls were put in place. The company says it does not store Social Security numbers, financial account details, or payment card information in the affected systems, though the full volume of stolen data is still being determined by external forensic teams.
Quick Facts:
Why it matters: This breach is part of a troubling wave of cyberattacks hitting the medtech industry, putting patient health data at risk and highlighting the growing vulnerability of healthcare supply chains to social engineering tactics.