Oracle Reports Data Breach Involving Patient Records

The software giant, known for managing electronic health records, notified its health-sector customers about the intrusion earlier this month.

Oracle Corp. has alerted its healthcare clients about a breach involving patient data theft. The breach, which occurred after January 22, 2025, was discovered following reports that hackers infiltrated Oracle’s servers and copied sensitive patient information.

The software giant, known for managing electronic health records, notified its health-sector customers about the intrusion earlier this month.

Hackers Accessed Cerner Servers

According to a notification shared with affected clients, Oracle confirmed that hackers accessed older Cerner servers. These servers contained patient data that had not yet been migrated to Oracle's cloud storage system. Oracle’s notice to customers revealed evidence that the cyber attackers used stolen customer credentials to gain unauthorized access.

“Available evidence suggests the threat actor illegally accessed the environment by using stolen customer credentials,” Oracle stated in its client notice.

The breach has raised concerns regarding the security of sensitive health data managed by Oracle, which has provided electronic health record solutions to various medical providers, including large hospital chains, government-run facilities, and small medical practices.

FBI Investigation Underway

The FBI is actively investigating the breach and the subsequent ransom attempts by the cybercriminals. “The FBI is investigating the breach and the efforts by cyber attackers to extort healthcare providers,” a source familiar with the situation revealed, speaking anonymously.

While the number of affected patients remains unclear, the stolen data may have included recent patient records. However, Oracle assured its clients that it supports reviewing affected data and identifying impacted patients.

“The company will assist your organization in reviewing information to identify impacted patients,” Oracle told its clients in the notification.

Notably, the US Department of Veterans Affairs, which also utilizes Oracle’s systems, was not affected by the breach, according to a department spokesperson.

The incident has further intensified scrutiny over Oracle’s handling of sensitive healthcare data, especially following its $28 billion acquisition of Cerner Corp. in 2022, which was part of the company's efforts to modernize healthcare IT systems.

Health Sector Security Concerns Rise

This breach highlights ongoing concerns about cybersecurity in the healthcare industry, which is increasingly targeted by cybercriminals seeking to exploit sensitive patient data. As healthcare providers transition to digital systems, the security of patient records remains a top priority.

Oracle’s breach serves as a stark reminder of the risks associated with digital healthcare data management, with the potential for widespread implications if these incidents remain unaddressed.