Lake Region Healthcare has notified individuals of a cybersecurity incident that may have impacted personal information. While there is no evidence of identity theft or misuse of data, the company is offering resources and guidance to help affected individuals protect themselves.
Lake Region Healthcare’s Data Breach Investigation
On or about May 19, 2025, Lake Region Healthcare detected unauthorized access to its network. The organization immediately secured its systems, notified law enforcement, and engaged external cybersecurity professionals to investigate the incident and assess the scope of potential data exposure.
After a thorough review, on June 5, 2026, Lake Region determined that certain files may have been accessed or removed. Although the organization has no evidence that information was misused, it is providing affected individuals with precautionary measures and identity monitoring services to reduce potential risks.
Lake Region Healthcare continues to strengthen its cybersecurity protocols, enhance monitoring, and provide guidance to patients on protecting sensitive personal and health information.
When Did This Breach Occur?
Unauthorized access to Lake Region Healthcare’s network occurred on May 19, 2025, with the discovery made the same day. The investigation and review concluded on June 5, 2026, and notifications to potentially affected individuals were sent in early July 2026.
What Information Was Breached?
The potentially exposed information includes:
- Full names
- Contact information (email, phone, mailing address)
- Health-related information (medical records, insurance details, Explanation of Benefits data)
Not all individuals had all data types compromised. Even without evidence of misuse, this type of information can increase the risk of identity theft, medical fraud, and other unauthorized activities.
What You Can Do
Affected individuals should take the following steps to protect themselves:
- Enroll in Complimentary Identity Monitoring: Lake Region partners with Cyberscout, a TransUnion company, offering Single Bureau Credit Monitoring, credit reports, and scores for 12 months. Enrollment is available at https://bfs.cyberscout.com/activate using your unique code.
- Monitor Financial Accounts: Regularly check bank accounts, credit card statements, and Explanation of Benefits for irregular activity.
- Obtain Free Credit Reports: Request one free credit report per year from Equifax, Experian, and TransUnion via www.annualcreditreport.com or 1-877-322-8228.
- Place Fraud Alerts or Security Freezes: Contact credit bureaus to add a 1-year or 7-year fraud alert, or place a security freeze to prevent unauthorized access.
- Report Suspicious Activity: Notify law enforcement, the Federal Trade Commission (www.identitytheft.gov), and your state Attorney General if misuse is suspected.
State-specific guidance is provided for residents of Iowa, Maryland, Massachusetts, New Mexico, New York, North Carolina, Oregon, Rhode Island, and Washington D.C..
File a Data Breach Lawsuit Against Lake Region Healthcare
Healthcare organizations have a legal duty to protect sensitive patient information. Unauthorized access or compromise of such data can expose individuals to identity theft and privacy violations. Those impacted may have the right to pursue compensation for time spent mitigating risks, monitoring accounts, and other damages.
If you were notified by Lake Region Healthcare or believe your information was affected, you may explore legal options through a class action lawsuit. Participating with other impacted individuals can help hold the organization accountable and encourage stronger data protection measures.
Contact us at Class Action U, where we’ll connect you with a lawyer skilled in class action lawsuits. If you’ve been contacted about this breach, received notice, or discovered you were impacted, fill out our quick, easy, and secure form to sign up. There is no cost to reach out to our legal partner and no obligation after speaking with someone from our team.