3.1 Million Impacted by QualDerm Data Breach
QualDerm Partners reports 3.1M patient records stolen in December 2025 breach.
Summary
Healthcare management services provider QualDerm Partners disclosed a data breach affecting 3.1 million patients in December 2025, with unauthorized network access lasting two days. Stolen data includes names, addresses, dates of birth, medical records, treatment information, and health insurance details. The company has notified affected individuals and regulatory agencies, offering 12 months of complimentary identity theft monitoring.
Full text
Healthcare management services provider QualDerm Partners is notifying more than 3.1 million people that their personal, medical, and health insurance information was stolen in a December 2025 data breach. The incident, the company says, was discovered on December 24 and involved unauthorized access to its network for two days. During this window, the attackers exfiltrated certain information from the “limited number of systems” that they compromised, the company notes in an incident notification (PDF). The stolen information, it says, includes names, addresses, dates of birth, email addresses, medical record numbers, doctor names, treatment and diagnosis information, health insurance information, dates of death, and, in some cases, government-issued ID information. QualDerm also notes that its investigation into the data breach continues, and that it has decided to notify the patients who have been identified to date. In response to the attack, the company immediately activated its response plans, took steps to contain the unauthorized activity, assessed the security of its systems, and notified law enforcement and regulatory agencies.Advertisement. Scroll to continue reading. QualDerm told the US Department of Health and Human Services that 3,117,874 people were impacted by the attack. The incident was reported last month, but was added to the HHS’s breach portal this week. The company is providing the impacted individuals with 12 months of free identity theft and credit monitoring services. Headquartered in Brentwood, Tennessee, QualDerm Partners provides healthcare management services to 158 practices in 17 states, covering cosmetics, dermatology, pathology, plastic surgery, and skin cancer care. Related: Mazda Says Employee, Partner Information Stolen in Cyberattack Related: Chip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware Related: Navia Data Breach Impacts 2.7 Million Related: Robotic Surgery Giant Intuitive Discloses Cyberattack Written By Ionut Arghire Ionut Arghire is an international correspondent for SecurityWeek. More from Ionut Arghire Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain AttackQNAP Patches Four Vulnerabilities Exploited at Pwn2Own Tycoon 2FA Fully Operational Despite Law Enforcement TakedownEclypsium Raises $25 Million for Device Supply Chain SecurityNavia Data Breach Impacts 2.7 MillionThousands of Magento Sites Hit in Ongoing Defacement CampaignAllure Security Raises $17 Million for Online Brand ProtectionCritical Langflow Vulnerability Exploited Hours After Public Disclosure Latest News Webinar Today: Putting CIS Controls and Benchmarks into PracticeIran Built a Vast Camera Network to Control Dissent. Israel Turned It Into a Targeting ToolCritical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms WarnMazda Says Employee, Partner Information Stolen in CyberattackStryker Says Malicious File Found During Probe Into Iran-Linked AttackRSAC 2026 Conference Announcements Summary (Pre-Event)M-Trends 2026: Initial Access Handoff Shrinks From Hours to 22 SecondsChip Services Firm Trio-Tech Says Subsidiary Hit by Ransomware Trending Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Securing Fragile OT in an Exposed World March 10, 2026 Get a candid look at the current OT threat landscape as we move past "doom and gloom" to discuss the mechanics of modern OT exposure. Register Webinar: Why Automated Pentesting Alone Is Not Enough April 7, 2026 Join our live diagnostic session to expose hidden coverage gaps and shift from flawed tool-level evaluations to a comprehensive, program-level validation discipline. Register People on the Move7AI has appointed Israel Barak as its first Chief Information Security Officer.Brian Harrell has been appointed Chief Security Officer at FirstEnergy.eSentire has named James C. Foster as Chief Executive Officer.More People On The MoveExpert Insights The Human IOC: Why Security Professionals Struggle with Social Vetting Applying SOC-level rigor to the rumors, politics, and 'human intel' can make or break a security team. (Joshua Goldfarb) How to 10x Your Vulnerability Management Program in the Agentic Era The evolution of vulnerability management in the agentic era is characterized by continuous telemetry, contextual prioritization and the ultimate goal of agentic remediation. (Nadir Izrael) SIM Swaps Expose a Critical Flaw in Identity Security SIM swap attacks exploit misplaced trust in phone numbers and human processes to bypass authentication controls and seize high-value accounts. (Torsten George) Four Risks Boards Cannot Treat as Background Noise The goal isn’t about preventing every attack but about keeping the business running when attacks succeed. (Steve Durbin) How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development Developers must view AI as a collaborator to be closely monitored, rather than an autonomous entity to be unleashed. Without such a mindset, crippling tech debt is inevitable. (Matias Madou) Flipboard Reddit Whatsapp Whatsapp Email