Fieldtex Products Data Breach Exposes Sensitive Patient Info

On or around Aug. 19, 2025, Fieldtex Products, Inc., a Rochester, New York-based medical supply fulfillment organization, discovered unauthorized activity within its computer systems. The data breach may have exposed personally identifiable information (PII) as well as protected health information (PHI).

The incident specifically affected the division responsible for over-the-counter (OTC) healthcare product fulfillment for health plans. Upon detection, Fieldtex immediately secured its network and engaged a third-party forensic investigation team to determine the nature and scope of the breach.

Fieldtex completed a comprehensive review of the affected files and finalized its analysis on Sept. 30, 2025. The types of information potentially exposed include patient names, addresses, dates of birth, insurance member identification numbers, plan names, effective terms and gender.

The company published a notification of data security incident on its website on Nov. 20, 2025. The exposure of PII and PHI puts individuals at risk of identity theft and medical fraud. The investigation is ongoing, and the exact number of individuals impacted has not been disclosed.

Fieldtex Products' response

In response to the incident, Fieldtex acted quickly to secure its systems and launched a thorough investigation in collaboration with cybersecurity experts. The company has since implemented additional security measures and is reviewing its policies and procedures related to data security to help prevent similar incidents in the future. The company has begun notifying impacted individuals by mail.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Fieldtex Products or a company that does business with Fieldtex Products.
• Sign up for the complimentary credit monitoring services offered by the company.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For those whose information may have been involved, the company has also established a dedicated toll-free call center at 833-866-8797, available from 8 a.m. to 8 p.m. ET, Monday through Friday (excluding holidays), and can be reached by email at cyberincident@fieldtex.com.