Healthcare technology firm CareCloud confirmed on Friday that hackers accessed one of its databases containing patients’ electronic health records during a cyberattack earlier this month. The breach, disclosed in a filing with the U.S. Securities and Exchange Commission (SEC), occurred on March 16, when unauthorized access was detected in one of six environments used to store medical and healthcare records.
The intruders maintained access for over eight hours before CareCloud restored its systems the same day. The company stated it has since removed the threat actors from its network and engaged an external cybersecurity firm to investigate the incident. However, CareCloud has not yet determined whether any data was stolen or if the attackers made off with sensitive information. The company also declined to disclose how many individuals may have been affected.
CareCloud provides electronic health record (EHR) solutions to more than 45,000 healthcare providers, including physicians and hospitals, serving millions of patients nationwide, according to its latest investor report. EHR platforms are frequent targets for financially motivated cybercriminals, who often steal personal data for extortion or resale on dark web markets.
The breach comes amid rising concerns in the healthcare sector following the 2024 ransomware attack on Change Healthcare, attributed to Russian cybercriminals, which disrupted services across the U.S. and exposed vast quantities of patient data. CareCloud has not indicated whether the recent attack resulted in data destruction or ransom demands, and a company spokesperson did not respond to requests for comment.
In its SEC filing, CareCloud acknowledged the breach could have a material impact on its operations but stated it does not expect the incident to significantly affect its financial standing. The investigation remains ongoing as the company continues to assess the scope and potential consequences of the breach.
Read more: techcrunch.com