Medstreaming Data Breach Affects an Unknown Number of Patients

Medstreaming, a company that provides clinical workflow and reporting solutions to hospitals and medical practices, experienced a major data breach. The cybersecurity incident compromised both personally identifiable information (PII) and protected health information (PHI) of an unknown number of patients.

Medstreaming disclosed the data breach to the U.S. Department of Health and Human Services on July 11, 2025. The company has not released the total number of individuals impacted by the breach, but it is believed to be in the thousands.

Exposed information may include names, contact information, dates of birth, Social Security numbers, driver's license or state ID numbers, health insurance information, medical records and financial information.

Medstreaming's response

In addition to the Health and Human Services disclosure, Medstreaming and its parent company Picis Clinical Solutions will work to identify and notify affected individuals with the data breach details.

If you believe your personal and protected health information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Medstreaming or your medical provider.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

More information about the company can be found on the Medstreaming website.