In the first half of 2025, over 29 million individuals were affected by health care organization data breaches. For example, Yale New Haven Health System and Episource, LLC, were both victims of cyberattack incidents affecting over 5.4 million individuals each, according to The HIPAA Journal.
In response to the 2024 Change Healthcare, Inc, cyberattack, which exposed 190 million individuals’ protected health information, Drug Enforcement Administration issued a guidance document for pharmacies. The guidance includes alternative processes for receiving and dispensing electronic prescriptions for controlled substances.