Indian Health Board Breach Impacts Patients Protected Health Info

On Dec. 15, 2025, the Indian Health Board of Minneapolis, a nonprofit health clinic serving the Twin Cities, reported a data breach to the U.S. Department of Health and Human Services. While the total number of people affected has not yet been disclosed, the sensitivity of the information and the clinic’s patient population make the situation serious.

The incident involved unauthorized access to sensitive information, though the specific method and perpetrator have not been publicly detailed.

The types of information exposed in this breach may include personally identifiable information (PII) and protected health information (PHI) such as names, contact details, medical records, treatment information, and possibly insurance or billing data.

Indian Health Board of Minneapolis's response

Following the discovery of the breach, Indian Health Board of Minneapolis took steps to investigate and contain the incident. The clinic notified federal authorities as required by law and began reaching out to affected individuals.

Patients who believe they may have been affected should remain vigilant for signs of identity theft or fraud.

It is recommended to monitor credit reports, review medical statements for unfamiliar charges, and be cautious of unsolicited communications requesting personal information.