ON April 19, 2026, Cherry Health in Michigan detected suspicious network activity, revealing unauthorized access and data copying. A preliminary notice was published on June 18, 2026, which did not acknowledge previous reports suggesting a ransomware attack. Individuals' information potentially involved includes names, addresses, phone numbers, dates of birth, health insurance details, and in some cases, Social Security numbers.
While the number of affected patients remains undisclosed, current and former patients and staff may be impacted. This incident follows a December 21, 2023 data breach that affected 181,820 patients, without any group claiming responsibility for either breach. Cherry Health has not disclosed details regarding encryption or ransom demands in either incident. Concerns about the company's transparency and preventive measures following the 2023 breach have been raised, but Cherry Health has not responded to inquiries.