Cookeville Regional Medical Center patient records leak
Data Leak
Summary
Hide ▲
Show ▼
Cookeville Regional Medical Center disclosed a data leak affecting 337,917 patients, exposing personal and medical records and raising identity-theft risk. Files were accessed or acquired by an unauthorized party between July 11 and July 14, 2025, and sample files were later posted on a leak site. The exposed data may include names, addresses, dates of birth, Social Security numbers, driver's license numbers, financial account details, medical record numbers, treatment information, and health insurance data. The breach was later tied to Rhysida, and notification letters began going out on April 14, 2026.
Related Happenings
7-Eleven franchisee-docs and Salesforce data leak
Data Leak
First: 18.05.2026 14:25
Last: 18.05.2026 14:25
Sources 1
About this happening:
**7-Eleven** confirmed a **April 8, 2026** intrusion into systems used to store **franchisee documents**, and **ShinyHunters** later claimed the theft of **more than 600,000 Sales...
7-Eleven franchisee-docs and Salesforce data leak
Data LeakAbout this happening: **7-Eleven** confirmed a **April 8, 2026** intrusion into systems used to store **franchisee documents**, and **ShinyHunters** later claimed the theft of **more than 600,000 Sales...
Latest development: 26.05.2026 10:01
Have I Been Pwned analyzed the leaked 7-Eleven data and estimated that the breach exposed personal information for 185,300 people, including names, dates of birth, unique email addresses, phone numbers, and physical addresses. The exposed archive was tied to ShinyHunters' extortion campaign against 7-Eleven and followed the group's leak-site posting after ransom demands were not met.
American Lending Center hit by ransomware attack
Incident
First: 15.05.2026 14:06
Last: 15.05.2026 14:06
Sources 1
About this happening:
The **American Lending Center** confirmed a **ransomware breach** that may have exposed personal data for **more than 123,000 individuals**, including **names, dates of birth, and...
American Lending Center hit by ransomware attack
IncidentAbout this happening: The **American Lending Center** confirmed a **ransomware breach** that may have exposed personal data for **more than 123,000 individuals**, including **names, dates of birth, and...
Cookeville Regional Medical Center (CRMC) hit by ransomware attack
Incident
First: 16.04.2026 15:40
Last: 16.04.2026 15:40
Sources 1
How related:
More than 337,000 patients of Cookeville Regional Medical Center (CRMC) in Tennessee have been notified that their personal and medical data was compromised in a July 2025 ransomware attack, the hospital confirmed this week.
About this happening:
The **Cookeville Regional Medical Center (CRMC)** suffered a **ransomware attack** that caused a network intrusion and a major **data breach** affecting more than **337,000 indivi...
Cookeville Regional Medical Center (CRMC) hit by ransomware attack
IncidentHow related: More than 337,000 patients of Cookeville Regional Medical Center (CRMC) in Tennessee have been notified that their personal and medical data was compromised in a July 2025 ransomware attack, the hospital confirmed this week.
About this happening: The **Cookeville Regional Medical Center (CRMC)** suffered a **ransomware attack** that caused a network intrusion and a major **data breach** affecting more than **337,000 indivi...
Latest development: 16.04.2026 18:01
Rhysida claimed responsibility for the Cookeville Regional Medical Center ransomware intrusion on August 2, 2025, demanded 10 Bitcoin worth roughly $1.15m, and posted sample files on its dark web leak site.
Cookeville Regional Medical Center data leak on Rhysida leak site
Data Leak
First: 16.04.2026 15:40
Last: 16.04.2026 15:40
Sources 1
About this happening:
The **Rhysida** group’s posting of **Cookeville Regional Medical Center (CRMC)** data exposed sensitive personal, financial, and medical records tied to **more than 337,000 people...
Cookeville Regional Medical Center data leak on Rhysida leak site
Data LeakAbout this happening: The **Rhysida** group’s posting of **Cookeville Regional Medical Center (CRMC)** data exposed sensitive personal, financial, and medical records tied to **more than 337,000 people...
TriZetto Provider Solutions hit by cyberattack
Incident
First: 06.03.2026 21:50
Last: 06.03.2026 21:50
Sources 1
About this happening:
TriZetto Provider Solutions disclosed a **data breach** involving **unauthorized web portal access** that exposed sensitive information for **3,433,965 people**, creating signific...
TriZetto Provider Solutions hit by cyberattack
IncidentAbout this happening: TriZetto Provider Solutions disclosed a **data breach** involving **unauthorized web portal access** that exposed sensitive information for **3,433,965 people**, creating signific...
Timeline
-
14.04.2026 03:00 2 articles · 1mo ago
Cookeville Regional Medical Center begins patient breach notifications
Initial DisclosureCookeville Regional Medical Center began mailing breach notification letters on April 14, 2026 after files were accessed or acquired by an unauthorized party between July 11 and July 14, 2025, affecting 337,917 individuals and exposing data that may include names, addresses, dates of birth, Social Security numbers, driver's license numbers, financial account details, medical record numbers, treatment information, and health insurance data.
Show sources
- Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack — www.infosecurity-magazine.com — 16.04.2026 18:01
- Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack — www.infosecurity-magazine.com — 16.04.2026 18:01
-
02.08.2025 03:00 1 articles · 9mo ago
Rhysida claims responsibility for Cookeville Regional Medical Center files
Attribution UpdateRhysida publicly claimed responsibility for the Cookeville Regional Medical Center intrusion on August 2, 2025, demanded 10 Bitcoin worth roughly $1.15m at the time, and posted sample files on its dark web leak site; it remains unclear whether any ransom was paid.
Show sources
- Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack — www.infosecurity-magazine.com — 16.04.2026 18:01