Overview of the Breach

Healthcare data remains a significant target for cybercriminals, with two major breaches in June compromising over 13 million patient records. Recently, a newly confirmed breach has affected more than 100,000 Americans, with sensitive data linked to Medicare.gov accounts accessed by hackers.

Discovery and Confirmation

The Centers for Medicare & Medicaid Services (CMS) confirmed this breach, alerting individuals whose data was compromised. Initial alerts began in May 2025 when numerous people reported receiving mysterious account confirmation letters for accounts they did not create.

Details of the Compromised Information

According to CMS, cybercriminals utilized stolen personal information from external sources to fraudulently set up Medicare.gov accounts. The compromised data includes:

• Full names
• Dates of birth
• ZIP codes
• Medicare Beneficiary Identifiers (MBIs)
• Medicare coverage details

CMS’s Response Measures

In response to the breach, CMS has deactivated all affected accounts and will be mailing new Medicare cards to roughly 103,000 impacted individuals. While no confirmed cases of identity theft have been reported, CMS emphasizes the actions are taken “out of an abundance of caution,” raising questions about federal cybersecurity measures.

The Ongoing Investigation

CMS continues to investigate how attackers obtained valid personal information. The validity of the data suggests that the hackers may have accessed information from previous breaches on other platforms. This incident underscores a significant weakness in the security of the federal healthcare system.

Protecting Yourself After the Breach

If your information has been compromised, there are several steps you can take to safeguard your Medicare data and minimize the risk of identity theft:

1. Monitor Account Activity: Regularly check your Medicare and healthcare accounts for unauthorized changes or unfamiliar charges.
2. Consider Identity Theft Protection: Enroll in a reliable identity theft protection service that monitors your personal data.
3. Secure Your Medicare Details: Never share your Medicare number or card details unless initiated by you and verified.
4. Remove Personal Data: Utilize data removal services to eliminate your information from the internet.
5. Report Fraud: Immediately report suspicious activity to 1-800-MEDICARE and file a report at IdentityTheft.gov.