Major US healthcare breach exposes data on 145,000 patients - Central Maine Healthcare reveals all

1. Pro
2. Security

Major US healthcare breach exposes data on 145,000 patients - Central Maine Healthcare reveals all News By Sead Fadilpašić published 14 January 2026

Names, health insurance information, and SSNs were all exposed

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

(Image credit: Pixabay) Share Share by:

• Copy link
• Facebook
• X
• Whatsapp
• Reddit
• Pinterest
• Flipboard
• Threads

Share this article 0 Join the conversation Follow us Add us as a preferred source on Google

• CMH breach exposed PII of 145,381 patients and employees in March 2025
• Stolen data includes names, SSNs, health insurance, and treatment information
• No actors claimed responsibility; victims offered credit monitoring and support services

The data breach incident that happened at Central Maine Healthcare (CMH) in spring 2025 affected more than 145,000 people, who may have lost personally identifiable information (PII) to unidentified hackers.

The organization confirmed the news in a data breach notification letter which was sent out to all affected individuals, noting the cyberattack happened in late March and was spotted in June 2025.

After ousting the intruders, CMH kicked off an investigation, to determine what happened and what the damage was, which concluded on November 6, 2025, when CMH realized sensitive data on exactly 145,381 individuals had been taken.

You may like

• Nearly half a million patients exposed in healthcare breach - here's what we know
• Healthcare firm apparently hit by major cyberattack exposing over a million medical records - how to find out if you're affected
• Conduent admits its data breach may have affected around 10 million people

Data yet to surface

The stolen data included people’s names, dates of birth, treatment information, dates of service, provider names, health insurance information, and Social Security numbers (SSN). Both employees and patients were said to be affected by this breach.

"For patients whose information may have been involved in the incident, Central Maine Healthcare recommends that they review the statements they receive from their healthcare providers and health insurance plans," the organization said. "If they see any services that were not received, they should contact the provider or health plan immediately."

As is standard practice in these situations, CMH is offering free credit and identity theft monitoring services, as well as a dedicated support line where victims can get answers, report abuse, and discuss potential concerns.

At press time, no threat actors assumed responsibility for this attack, and the data that was stolen is yet to surface anywhere on the dark web. Criminals are most likely to either use it in phishing attacks or sell it to a different actor.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

Central Maine Healthcare is an integrated nonprofit health care delivery system that serves about 400,000 residents across central, western, and mid-coast parts of Maine.

It operates three hospitals: Central Maine Medical Center in Lewiston, Bridgton Hospital, and Rumford Hospital, as well as a large primary and specialty care network with more than 600 physicians and advanced practice professionals in over 40 locations. Its services include trauma care, cardiovascular and cancer treatment, and LifeFlight helicopter service.

Via BleepingComputer

The best antivirus for all budgetsOur top picks, based on real-world testing and comparisons

➡️ Read our full guide to the best antivirus1. Best overall:Bitdefender Total Security2. Best for families:Norton 360 with LifeLock3. Best for mobile:McAfee Mobile Security

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Sead FadilpašićSocial Links Navigation

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Show More Comments

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Logout Read more Nearly half a million patients exposed in healthcare breach - here's what we know    Healthcare firm apparently hit by major cyberattack exposing over a million medical records - how to find out if you're affected    Conduent admits its data breach may have affected around 10 million people    Aflac reveals personal data of 22.6 million people stolen in cyberattack - here's what we know    Personal data on over 700,000 exposed by Illinois government agency    Massive data breach sees credit card details of over 5.6 million victims leaked - here's what we know    Latest in Security ServiceNow patches critical security flaw which could allow user impersonation    Python libraries used in top AI and ML tools hacked - Nvidia, Salesforce and other libraries all at risk    Hackers hijack LinkedIn comments to spread malware - here's what to look out for    Experts warn this new Chinese Linux malware could be preparing something seriously worrying    Thousands of n8n instances under threat from top security issue    US government told to patch high-severity Gogs security issue or face attack    Latest in News Verizon may be down, with many users seeing 'SOS' – here's everything we know about this potential outage    There's a sneaky way to watch Heated Rivalry for free    Is Kat Dennings in Avengers: Doomsday? Even she's not sure    Prime Video releases violent first trailer for new pirate movie The Bluff    Amazon is bringing 50 Roku channels to Fire TV, and they're completely free to stream.    Security researchers warn Telegram links can doxx you – even with a VPN    LATEST ARTICLES

1. 1‘In AI models, the real bottleneck isn’t computing power — it’s memory’: Phison CEO on 244TB SSDs, PLC NAND, why high-bandwidth flash isn’t a good idea, and why CSP profit goes hand in hand with storage capacity
2. 2These 6 Apple apps just got hit by a subscription bombshell – but users say there’s an even bigger crime
3. 3'I am literally not in it… but I could be in it.' Kat Dennings says she's 'in Marvel’s system' so she can't rule out an appearance in Avengers: Doomsday
4. 4Hackers hijack LinkedIn comments to spread malware - here's what to look out for
5. 5The LG C6 is LG's mid-range OLED TV for 2026 – here's everything we know so far about one of this year's most anticipated TVs