Medi-Rents Data Breach Exposes Health Information

Medi-Rents & Sales Inc., a home medical equipment and supply company based in Baltimore, Maryland, disclosed a data breach in early 2026 that affected 1,524 individuals in the United States.

On or about Feb. 4, 2026, Medi-Rents became aware of unusual activity in its email environment. The forensic investigation revealed that certain information may have been viewed by an unauthorized individual as part of the incident. The unauthorized access took place between Feb. 4 and Feb. 5, 2026.

Following the initial investigation, Medi-Rents began a comprehensive review of the affected data set to determine what sensitive or personal information had potentially been impacted. The review also sought to identify the specific individuals whose data may have been involved. Medi-Rents completed this review on March 5, 2026.

The types of information potentially exposed vary by individual but included names, dates of birth, insurance information and limited health information.

The breach was reported to the U.S. Department of Health and Human Services on March 25, 2026. The company also posted a notice on its website on the same date.

Medi-Rents & Sales' response to the breach

The company is offering credit monitoring and identity protection services to those whose information was potentially impacted.

The company's notification included detailed guidance for affected individuals on steps they can take to protect their personal information. This guidance covered how to place fraud alerts and credit freezes with the three major credit reporting bureaus, as well as how to obtain free annual credit reports and file complaints with the Federal Trade Commission if identity theft is suspected.

Individuals who did not receive a notification letter but would like to know if they were affected can call the company's dedicated assistance line at 833-877-2603. The line is available Monday through Friday from 8:00 a.m. to 8:00 p.m. Eastern time, excluding major U.S. holidays.

Steps to take if your information was exposed

• Place a fraud alert or credit freeze with Equifax (1-888-298-0045), Experian (1-888-397-3742) and TransUnion (1-800-916-8800) to help prevent unauthorized accounts from being opened using exposed personal details.
• Request free credit reports at AnnualCreditReport.com and review them carefully for any unfamiliar accounts or suspicious activity.
• Review Explanation of Benefits statements from health insurers for any medical services, procedures or equipment that were not actually received, since health information was potentially exposed in this breach.
• Monitor insurance accounts and financial statements regularly for any signs that someone may be using personal or insurance information without authorization.
• Be cautious of phishing attempts that reference Medi-Rents & Sales Inc. or this data breach by name, as scammers sometimes use breach notifications to trick people into sharing additional personal information.
• Report suspected identity theft to the Federal Trade Commission at identitytheft.gov or by calling 1-877-438-4338, and consider filing a police report if identity fraud is suspected.