MediCopy Data Breach Affects Health Systems Including Deaconess Patients

MediCopy, a health information management company specializing in release of information solutions for healthcare providers, experienced a data breach in January 2026 that affected patients of Deaconess Health System.

MediCopy serves as a release of information vendor for Deaconess, managing the secure transfer of patient medical records to authorized requesting parties such as patients, insurers, attorneys and other healthcare providers. The company works with hospitals, physician practices and outpatient facilities nationwide.

Deaconess Health System, based in Evansville, Indiana, posted a notice about the data incident on its website. According to the notice, MediCopy notified Deaconess of the security incident on Feb. 2, 2026. The incident was limited to certain patients of Deaconess Henderson Hospital in Henderson, Kentucky, Deaconess Union County Hospital in Morganfield, Kentucky, and their surrounding clinics whose records were subject to a release of information request.

The total number of affected individuals has not been publicly disclosed.

What happened in the MediCopy data breach

On Jan. 13, 2026, an unauthorized actor gained access to MediCopy's cloud-based file sharing platform and downloaded files containing patient information, according to the notification posted by Deaconess Health System.

The unauthorized access targeted files that were associated with release of information requests. These requests are formal processes through which patient records are shared with authorized parties such as insurers, attorneys and other healthcare providers.

MediCopy discovered the security incident and notified Deaconess Health System on Feb. 2, 2026, approximately three weeks after the unauthorized access took place. Deaconess then launched an investigation in coordination with MediCopy to understand the full scope of the breach. As part of this effort, a comprehensive review of the involved files was conducted to identify the specific individuals whose information was included in the downloaded data.

The investigation confirmed that the incident did not involve or impact any of Deaconess's own IT systems or its electronic medical record system. The breach was isolated entirely to MediCopy's cloud-based file sharing platform.

Because the breach occurred at a third-party vendor rather than at the health system itself, affected patients may not have been previously aware that their information was stored on MediCopy's platform.

The types of information exposed varied by individual but may have included names, Social Security numbers, dates of birth, medical record numbers, dates of service, health insurance identification numbers and medical records related to treatment received at Deaconess facilities.

Response to the MediCopy data breach

Deaconess reported the incident to relevant agencies and began the process of directly notifying affected patients. The health system is mailing letters to patients whose information was involved in the breach. These notification letters provide specific details about the incident and include instructions for enrolling in protective services.

Affected patients are being offered complimentary access to credit monitoring and identity protection services arranged by Deaconess. The health system also encouraged affected patients to remain vigilant by regularly reviewing their account statements and credit reports for any unauthorized activity.

For patients who have questions about the incident or need additional assistance, Deaconess has established a dedicated toll-free call center at 1-844-558-4567. The call center is staffed Monday through Friday between 9 a.m. and 5 p.m. Central Time.

Steps to take if your information was exposed

• Place a fraud alert or credit freeze. Contact Equifax (1-800-525-6285), Experian (1-888-397-3742) and TransUnion (1-800-680-7289) to help prevent unauthorized accounts from being opened using stolen personal information.
• Review credit reports for unfamiliar activity. Request free credit reports at AnnualCreditReport.com and carefully review them for any accounts, inquiries or other activity that seems unfamiliar.
• Monitor health insurance statements carefully. Review Explanation of Benefits statements from health insurers for any services, prescriptions or medical equipment not received, as exposed medical information could potentially be used for medical identity fraud.
• Be cautious of phishing attempts. Watch for suspicious emails, phone calls or letters that reference MediCopy, Deaconess or this data breach by name, as scammers sometimes use breach notifications to trick people into sharing additional personal information.
• Review Social Security statements for unauthorized use. Check Social Security statements at ssa.gov for any signs of unfamiliar earnings or benefits activity that could indicate someone is misusing a stolen Social Security number.