Bad actors often target healthcare organizations because they typically lack strong cybersecurity defenses. On top of that, the data they store is highly valuable, and healthcare companies are often willing to pay large sums to recover it. The latest attack has impacted multiple cancer centers across the U.S.A coordinated phishing campaign has breached sensitive patient data at several cancer care providers affiliated with Integrated Oncology Network (ION), a Tennessee-based network of oncology practices.Sign up for my FREE CyberGuy ReportGet my best tech tips, urgent security alerts, and exclusive deals delivered straight to your inbox. Plus, youll get instant access to my Ultimate Scam Survival Guide - free when you join myCYBERGUY.COM/NEWSLETTERThe breach, which occurred over a three-day period between Dec. 13 and 16, 2024, allowed attackers to access employee email and SharePoint accounts, according to notices filed with state regulators and the U.S. Department of Health and Human Services.NATIONAL SECURITY EXPERTS RAISE CONCERNS AFTER MICROSOFT PROGRAM EXPOSED AS POSSIBLE AVENUE FOR CHINESE SPYINGThe compromised accounts contained protected health information, including names, addresses, birth dates, diagnoses, lab results, treatment details, medications, insurance information, and in some cases, Social Security numbers and financial data. While ION says there is no current evidence of misuse, the company has offered affected individuals free credit monitoring, dark web monitoring and identity theft protection services.Breach notifications were sent to impacted practices on June 13, 2025, and patient letters began mailing on June 27.Investigators say the phishing campaign was likely designed to harvest data for use in wider fraud schemes. While SharePoint access was also compromised, the primary focus appears to have been email-based data collection. ION says it has since updated its cybersecurity protocols and provided additional training to staff.So far, at least 11 practices have reported being affected by the breach. The largest include:Other practices affected include imaging and radiation centers in Texas, Louisiana and North Florida. In total, more than 130,000 individuals have been impacted so far. The breach is now listed on the HHS Office for Civil Rights breach portal, which tracks healthcare data exposures involving more than 500 individuals.WHAT IS ARTIFICIAL INTELLIGENCE (AI)?We reached out to Integrated Oncology Network, now operating within Cardinal Health's Navista oncology alliance, for comment, but did not receive a response before our deadline.The recent phishing attack on ION-affiliated cancer centers exposed sensitive patient information, including contact details, medical records, and even Social Security numbers in some cases. If you are affected or just want to stay one step ahead, these actions can help minimize your risk.The ION data breach gives attackers access to your contact details, which they can misuse. Avoid clicking on unexpected emails or messages, even if they look legitimate. The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have strong antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keepingyour personal information and digital assets safe.Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android & iOS devices atCyberGuy.com/LockUpYourTechSince your contact details might have been exposed in the ION breach, you're more vulnerable to spam, scams and targeted fraud. Consider using a personal data removal service to scrub your name, email, phone number and address from data broker websites that sell your information.GET FOX BUSINESS ON THE GO BY CLICKING HERECheck out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visitingCyberguy.com/DeleteGet a free scan to find out if your personal information is already out on the web:Cyberguy.com/FreeScanReusing passwords increases your risk. A single leaked password can unlock multiple accounts. Use a password manager to generate and store secure passwords.Get more details about my best expert-reviewed Password Managers of 2025 atCyberguy.com/PasswordsION is offering free identity theft and credit monitoring services to those affected by the breach. But even if you weren't impacted by this specific breach, it's still smart to protect yourself. Identity theft protection services can alert you to suspicious activity, help you recover if your identity is stolen, and often provide tools to freeze or lock your credit. That prevents fraudsters from opening new accounts in your name, and you can lift the freeze temporarily when needed.See my tips and best picks on how to protect yourself from identity theft atCyberguy.com/IdentityTheftAdding a second layer of login protection like a text message or app-based code via 2FA, can make it much harder for ION attackers to access your accounts, even if your password is exposed.Keep an eye out for strange charges or unfamiliar accounts. Set up alerts through your bank and review your credit report regularly to catch fraud early.Phishing attacks remain a leading cause of healthcare data breaches, often exploiting gaps in email security and employee awareness. While ION acted quickly to contain the incident, the scope of the breach highlights how a single phishing campaign can expose tens of thousands of patient records across multiple systems and locations.Do you think healthcare providers are doing enough to protect patient data? Let us know by writing us atCyberguy.com/ContactSign up for my FREE CyberGuy ReportGet my best tech tips, urgent security alerts, and exclusive deals delivered straight to your inbox. Plus, youll get instant access to my Ultimate Scam Survival Guide - free when you join myCYBERGUY.COM/NEWSLETTERCopyright 2025 CyberGuy.com.All rights reserved.