CareCloud Data Breach Exposes Patient Information
▼ Summary
– CareCloud experienced a data breach and network disruption on March 16, 2026, lasting about eight hours in one of its electronic health record environments.
– The company engaged external cybersecurity experts to investigate and secure its systems, reporting the incident to its cybersecurity insurer.
– The breach compromised one of its six environments that holds patient health records, though the full scope of accessed data is under investigation.
– CareCloud confirmed the attacker no longer has access and that other company platforms and systems were not impacted.
– All affected systems have been restored, and the company is working to strengthen security measures to prevent future incidents.
A significant data breach at healthcare technology provider CareCloud compromised patient information and caused an eight-hour network disruption. The New Jersey-based firm, which offers a suite of electronic health record (EHR) and practice management solutions, disclosed the incident in a regulatory filing. Unauthorized access to its IT infrastructure occurred on March 16, 2026, specifically impacting one of its six software environments.
In its filing with the U. S. Securities and Exchange Commission, CareCloud stated the breach created a temporary network disruption that partially hindered functionality and data access. The company restored full operations later that same evening. Following the detection of the intrusion, CareCloud notified its cybersecurity insurer and engaged a leading cyber response advisory team from a major accounting firm. This external team was tasked with securing the compromised environment and conducting a comprehensive forensic investigation to determine the incident’s full scope.
CareCloud confirmed that the breach was limited to a single environment housing patient health records for its clients. The company emphasized that its other platforms, divisions, and systems were unaffected and that the attacker no longer has access to its databases. While the investigation is ongoing to identify the specific types of data accessed or exfiltrated, the total number of impacted individuals remains unclear. All affected systems have been fully restored, and the firm is collaborating with external cybersecurity experts to strengthen its security measures against future attacks.
The nature of the attack is still under investigation, with no ransomware group having claimed responsibility for the intrusion at this time. CareCloud provides critical software-as-a-service (SaaS) solutions, including revenue cycle management and patient experience platforms, to healthcare practices. The company is continuing its forensic review to provide further details on the compromised data and the individuals affected.
(Source: BleepingComputer)
