ACCORDING to the data breach tracker operated by the US Department of Health and Human Services (HHS), three US healthcare organisations disclosed breaches affecting a total of nearly 600,000 individuals, two in Illinois and one in Texas. The North Texas Behavioral Health Authority disclosed that its breach affected 285,000 people after a network intrusion was detected in October 2025.
Southern Illinois Dermatology, based in Salem, Illinois, said late November 2025 that files storing personal information were compromised, affecting 160,000 victims, with the Insomnia ransomware group later listing the organisation in February as having stolen data for about 150,000 patients. Saint Anthony Hospital in Chicago reported that an email security incident exposed the information of 146,000 people, with the intrusion occurring in February 2025.
The hospital noted two employee email accounts were compromised, and authorities have previously linked Saint Anthony Hospital to past ransomware activity, though the current incident is described separately.