Yale New Haven’s well being system, or YNHHS, reported an information violation of federal regulators that impacted nearly 5.6 million folks, which makes it the best violation of well being knowledge knowledgeable the HHS in 2025, till now. YNHHS is the most important well being system in Connecticut.
Ynhhs found an uncommon exercise inside its IT techniques on March eight, 2025, which led him to launch an investigation and contain consultants in exterior cybersecurity. The investigation revealed that an unauthorized third occasion had obtained entry to the YNHHS community and obtained copies of sure knowledge.
The knowledge concerned within the violation included names, delivery dates, phone numbers, race or ethnicity, addresses, e-mail addresses, affected person kind, medical registration numbers and social safety numbers. The digital medical information of the well being system didn’t take part within the violation.
YNHHS assured sufferers that the incident by no means affected the capability of the well being system to offer affected person care at their care websites.
The well being system started sending notification letters to folks impacted in April.
“YNHHS considers the well being, security and privateness of sufferers with our highest precedence,” mentioned a YNHHS web site. “We’re updating and constantly enhancing our techniques to guard the information we keep and to assist stop occasions like this sooner or later.”
The YNHHS is the second violation knowledgeable in April that has affected greater than four million folks. Blue Protect of California just lately notified four.7 million folks from a violation that arose from a Google Analytics configuration that allowed him to share the members of the members with Google’s advertisements.
Jill McKeon has coated the cybersecurity and privateness information of medical care since 2021.