{"id":45497,"date":"2026-04-17T04:28:55","date_gmt":"2026-04-16T20:28:55","guid":{"rendered":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/04\/17\/cookeville-hospital-discloses-rhysida-breach-hitting-337917-infosecurity-magazine\/"},"modified":"2026-04-17T04:28:55","modified_gmt":"2026-04-16T20:28:55","slug":"cookeville-hospital-discloses-rhysida-breach-hitting-337917-infosecurity-magazine","status":"publish","type":"post","link":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/04\/17\/cookeville-hospital-discloses-rhysida-breach-hitting-337917-infosecurity-magazine\/","title":{"rendered":"Cookeville Hospital Discloses Rhysida Breach Hitting 337,917 – Infosecurity Magazine"},"content":{"rendered":"

More than 337,000 patients of Cookeville Regional Medical Center (CRMC) in Tennessee have been notified that their personal and medical data was compromised in a July 2025 ransomware attack, the hospital confirmed this week.<\/p>\n

The 309-bed facility began mailing breach notification letters on April 14, 2026, roughly nine months after the intrusion was detected.<\/p>\n

Files were accessed or acquired by an unathorized party between July 11 and July 14, 2025, according to a filing<\/a> with the Maine Attorney General's Office. A total of 337,917 individuals have been affected. <\/p>\n

Inside the Rhysida Attack on CRMC<\/strong><\/h2>\n

Rhysida, a ransomware-as-a-service operation linked to Russia and active since May 2023<\/a>, claimed responsibility on August 2, 2025. The gang demanded a ransom of 10 Bitcoin, worth roughly $1.15m at the time, and posted sample files on its dark web leak site. It is unclear whether any ransom was paid.<\/p>\n

Information accessed may include names, addresses, dates of birth, Social Security numbers, driver's license numbers, financial account details, medical record numbers, treatment information and health insurance data.<\/p>\n

CRMC, which serves around 250,000 patients annually across 14 counties in the Upper Cumberland region, is offering 12 months of free identity theft protection through Experian.<\/p>\n

Read more on Rhysida's healthcare targeting: Rhysida Ransomware Analysis Reveals Vice Society Connection<\/a><\/em><\/p>\n

A Year of Pressure on US Healthcare<\/strong><\/h2>\n

The CRMC incident ranks as the eighth-largest US healthcare ransomware breach of 2025 by records compromised, according to Comparitech<\/a>, which logged 134 confirmed attacks on US healthcare providers last year, exposing 11.7 million records.<\/p>\n

Rhysida alone claimed 91 attacks across all sectors in 2025, with 23 confirmed and an average demand of $1.2m.<\/p>\n

Other recent Rhysida healthcare victims include:<\/p>\n