February 23, 2026

US Healthcare Data Breach Affects 140,000 Individuals

Vaibhav February 23, 2026
US-Healthcare-Data-Breach-Affects-140-000-Individualsdata
Post Views: 4

Data Breach Affects Nearly 140,000 Individuals

A data breach affecting nearly 140,000 individuals has been disclosed by Vikor Scientific, a healthcare diagnostic company based in South Carolina.

Origin of the Breach

The breach was first reported by the US Department of Health and Human Services (HHS) on its healthcare data breach tracker, listing Vikor Scientific, along with affiliated companies KorPath and Korgene, as the victims of a data breach.

However, it appears that the breach did not directly target Vikor Scientific or its affiliates. Instead, the data breach originated from Catalyst RCM, a provider of revenue cycle management solutions.

Investigation and Findings

Catalyst detected suspicious activity within its secure file management system in mid-November 2025 and subsequently published a data breach notice on its website.

An investigation by Catalyst revealed that compromised credentials had been used to access data, resulting in the theft of files containing sensitive information, including names, dates of birth, payment card details, medical information, and health insurance information.

The Everest ransomware group claimed to have stolen approximately 12GB of documents from Vikor, Korgene, and KorPath.

Notification and Impact

Catalyst’s notification to impacted individuals stated that the compromised data was in its possession due to the medical coding and billing services it provides to Vikor Scientific, KorPath, and Korgene.

However, it is unclear whether the reported 139,964 affected individuals is the total number of impacted people or if the actual number is higher.

Ransomware Group’s Actions

The Everest ransomware group listed Vikor Scientific, KorPath, and Korgene on its leak website in November 2025, publishing data allegedly stolen from the companies.

Conclusion

The incident highlights the potential risks associated with third-party vendors and the importance of robust security measures to protect sensitive data.

Catalyst RCM has yet to share the number of impacted individuals with the HHS, and the company has not provided further clarification on the breach.

The incident serves as a reminder of the need for organizations to prioritize cybersecurity and implement effective measures to prevent data breaches.



About Author

Vaibhav

See author's posts

More Stories

PayPal-Data-Breach-Exposes-Users-to-Massive-Online-Frauddata

PayPal Data Breach Exposes Users to Massive Online Fraud

Vaibhav February 23, 2026
IDMerit-Data-Breach-Billions-of-Records-Exposed-in-Massive-Cybersecurity-Incidentdata

IDMerit Data Breach: Billions of Records Exposed in Massive Cybersecurity Incident

Vaibhav February 20, 2026
French-Bank-Registry-Data-Breach-Affects-1-2-Million-Customer-Accountsdata

French Bank Registry Data Breach Affects 1.2 Million Customer Accounts

Vaibhav February 20, 2026

You may have missed

Spanish-Police-Arrest-Suspected-Anonymous-Members-Over-DDoS-Attacks-on-Government-Websitesdata

Spanish Police Arrest Suspected Anonymous Members Over DDoS Attacks on Government Websites

Vaibhav February 23, 2026
Infrastructure-Development-in-America-A-Work-in-Progressdata

Infrastructure Development in America: A Work in Progress

Vaibhav February 23, 2026
Unlocking-the-Future-Why-Now-s-the-Time-to-Prepare-for-the-Quantum-Computing-Revolutiondata

Unlocking the Future: Why Now’s the Time to Prepare for the Quantum Computing Revolution

Vaibhav February 23, 2026
US-Healthcare-Data-Breach-Affects-140-000-Individualsdata

US Healthcare Data Breach Affects 140,000 Individuals

Vaibhav February 23, 2026
ClawHub-Users-Warned-Fake-Troubleshooting-Tips-Expose-Users-to-Infostealer-Malware-Infectionsdata

ClawHub Users Warned: Fake Troubleshooting Tips Expose Users to Infostealer Malware Infections

Vaibhav February 23, 2026
en_USEnglish
en_USEnglish