The Circuitry
THE CIRCUITRYYour one-stop source for all tech news
HOMETODAYNEWSFEEDEVENTS
BOOKMARKS
RSS
© 2026 The Circuitry
About UsSourcesContactCorrectionsPrivacy
  • Today
  • Feed
  • Events
  • Saved
Scroll for more
Verification
VERIFIEDConfidence: HIGH
Source identified
Claims cross-referenced
No discrepancies found
Fact-check summary

Multiple outlets (Reuters, HIPAA Journal, Seeking Alpha, StreetInsider) confirm AdaptHealth's July 2 SEC filing on the June social engineering breach via contractor exposing patient data and billing passwords.

Sourcing
4independent sources

via The Register

The Register · track record
8Stories
100%Verified
830d
All sources →
Home/Tech/AdaptHealth Reports Social Engineering Attack Stole Patient Records via Contractor
VERIFIEDBy Xavier Rivera· ·1.5 min read

AdaptHealth Reports Social Engineering Attack Stole Patient Records via Contractor

AdaptHealth told the SEC that social engineering against a contractor allowed thieves to steal patient PII, PHI, and an insurance billing password file. The firm activated its response plan on June 15, later deemed the breach material, and has applied extra safeguards while its investigation proceeds.

Source:The Register
Post
AdaptHealth Reports Social Engineering Attack Stole Patient Records via Contractor
TL;DRAI · 60 sec read

AdaptHealth disclosed a social engineering attack on a contractor that gave hackers access to its cloud systems and patient records with personal and health data plus a billing password file. The firm filed an SEC notice after deeming the breach material. No Social Security numbers or payment details were taken. The incident shows healthcare firms remain exposed through third-party contractors.

AdaptHealth disclosed that cybercriminals employed social engineering tactics against one of its contractors to break into the medical equipment provider's cloud systems and make off with sensitive patient records.

Attackers targeted contractor to breach cloud environment. The Pennsylvania-based firm filed notice with the SEC on July 2 after learning on June 15 that intruders had accessed its networks. The breach reportedly gave the attackers entry to internal patient management systems, document storage platforms, and external electronic health record system portals.
Social Security numbers and payment card information are not believed to have been taken.
The intruders removed a "password file associated with insurance billing" along with personally identifiable information and protected health information belonging to certain patients.

Company activates response and deems breach material. AdaptHealth immediately disabled the compromised contractor account, reset credentials, and strengthened access controls while launching its incident response plan. The company now considers the matter contained even as its probe continues to establish the breach's full extent.
From The CircuitryThe Feed — live briefs across tech, all day.See what’s happening →
By June 27 the firm had concluded that "due to the nature and potential volume of the data that is at risk" the incident qualified as material, obliging the regulatory filing. It added that it "has since taken steps intended to mitigate the risk of dissemination of the exfiltrated data."
The incident is the latest example of healthcare organizations facing compromise through trusted third-party relationships.
No Social Security numbers or payment details affected. Social Security numbers and payment card information are not believed to have been taken. The filing did not confirm whether an extortion demand was received or paid, and no ransomware gang had publicly claimed the operation when the document was submitted.

Shares drop as company serves millions of patients. AdaptHealth, founded in 2012, supplies respiratory, sleep, and diabetes therapies to more than 4.2 million patients in all 50 US states per its 2024 annual report. The Register sought additional comment from the company on possible ransom demands and further safeguards against data misuse.
The incident is the latest example of healthcare organizations facing compromise through trusted third-party relationships.

EXPERT TAKE

Healthcare organizations must treat contractor sessions as high-risk entry points given the prevalence of social engineering in cloud compromises.

Why this mattersAI · ~100 words

Tap a lens to see what this story means for you.

Reader-supported
DonateBuy me a coffee →Follow@thecircuitry_ →Follow@thecircuitry.to →

Reader-supported · Daily Brief

Daily brief at 7 AM ET. Top tech stories, every morning. Sourced and fact-checked.

HELP US IMPROVE
From The Circuitry

See what’s happening right now

The Feed runs all day — short, verified briefs the moment they break.

Open the Feed →
From The Circuitry

Follow @thecircuitry_

Every story we publish, as it happens. No noise between.

Follow on X ↗On Bluesky ↗

Reader-supported

The Circuitry is a passion project I've always wanted to build, and I love the work behind it.

Running it costs real money. APIs, hosting, time. To keep improving the site and growing this into something useful for everyone, those costs have to be covered.

Any contribution is appreciated. If not, no pressure. Thanks for reading.

Buy me a coffee
cybersecurityhealthcaredata-breach
More fromThe Register
  • Cloudflare to block mixed-purpose bots from ad-supported sites by default

    Tech · 2d
  • Anonymous researcher drops 0-day 'exploitarium' repo

    Tech · 3d
  • BT and Verizon spin off international networking arms into $4B joint venture

    Tech · 4d
More inTech
  • Ecolab Acquires CoolIT Systems for $4.75 Billion

    Tech · 2h
  • TSMC secures approval for $20B Arizona expansion

    Tech · 16h
  • Meta launches AI-focused Pocket app unlike original

    Tech · 20h
SupportThe Work

The Circuitry is reader-supported. If you find the daily brief useful, you can buy me a coffee to keep it going.

Buy a coffee →
SubscribeCircuitry Brief

Daily brief at 7 AM ET. Top tech stories, every morning.

MORE IN TECH

Ecolab Acquires CoolIT Systems for $4.75 Billion

Ecolab agreed to purchase CoolIT Systems from KKR for about $4.75 billion in cash to expand its offerings in AI data center liquid cooling. The business is forecast to add approximately $550 million in sales over the next year and become accretive to earnings by 2028.

TSMC secures approval for $20B Arizona expansion

Taiwan's Department of Investment Review has approved TSMC's US$20 billion capital injection into its US subsidiary TSMC Arizona. The approval clears the way for the semiconductor foundry to expand its manufacturing operations in the United States.

Meta launches AI-focused Pocket app unlike original

Meta has launched Pocket, an AI app for creating and sharing interactive gizmos that bears no resemblance to the former read-it-later service. The move advances Zuckerberg's vision of AI-powered social experiences while the app rolls out outside the US.