Blue Fish Pediatrics Data Breach: Sensitive PHI and PII Exposed

Blue Fish Pediatrics, a multi-location pediatric medical practice in the Houston, Texas area, disclosed a data breach that involved unauthorized access to its computer systems in July 2025.

Blue Fish Pediatrics posted a notice of the data security incident on its website, and began sending notification letters to affected individuals on June 17, 2026.

On or about July 17, 2025, an unauthorized party gained access to Blue Fish Pediatrics' computer systems, according to the company's notification. Upon detecting the unauthorized activity, the practice contained the incident and launched a thorough investigation into the scope of the intrusion.

Through the investigation, the company determined that between July 11, 2025, and July 17, 2025, a limited number of files were potentially accessed or acquired by the unauthorized party. The compromised files contained both personally identifiable information and protected health information.

The personally identifiable information included full names, Social Security numbers, dates of birth and driver's license and/or state identification numbers.

The protected health information included medical record numbers, diagnosis and conditions information, lab results, medications information, healthcare claims information and clinical/treatment information.

Blue Fish Pediatrics' response to the breach

Blue Fish Pediatrics provided individuals whose Social Security numbers were contained in the affected files complimentary credit monitoring services.

For individuals who have questions, need additional information or want to determine whether they are affected and eligible for credit monitoring, Blue Fish Pediatrics has established a dedicated toll-free response line. The number is 1-877-311-3743, and the line is available Monday through Friday from 8:00 a.m. to 5:00 p.m. Central Time.