McLaren Health Care is notifying 743,000 patients of a significant data breach following a ransomware attack in July 2024 by the INC hacker group. Though the breach was discovered in August 2024, forensic investigations took nine months to confirm the scope of the compromise, with notifications only beginning in June 2025.

This breach, which disrupted IT and phone systems across McLaren’s 14-hospital network, follows a similar attack in 2023 where 2.2 million individuals’ data - including medical records and Social Security numbers - was stolen and partially leaked online by the ALPHV/BlackCat group.

Despite McLaren’s $6.6 billion revenue and extensive medical footprint, the recurring nature of these breaches underscores the urgent need for robust, end-to-end cybersecurity protocols. The delayed response, ongoing system vulnerabilities, and repeated breaches place the organization at significant legal and financial risk, including potential lawsuits, regulatory penalties, and costly settlements.

For any organization, especially in healthcare, where patient data is highly sensitive, proactive cybersecurity investment is not optional. It is a critical safeguard against reputational damage, operational disruption, and legal exposure. Read more about this story on our LinkedIn page