Pulse Urgent Care Discloses Data Breach Exposing Patients' SSNs & Protected Health Info

Northern California-based, Pulse Urgent Care Center, experienced a data breach earlier this year that impacted sensitive patient information. On March 24, 2025, the organization discovered suspicious activity within its network, which was later confirmed to be a ransomware attack orchestrated by the MEDUSA group.

The attackers gained unauthorized access to Pulse Urgent Care Center’s systems and deployed malicious software, compromising the security of the network and data.

The breach was severe in both scope and method. MEDUSA, a well-known ransomware group, claimed responsibility for the attack, stating on their dark web portal that they had obtained approximately 60.70 GB of data from the organization. They threatened to publish the data within eight to nine days and provided sample screenshots as evidence of their access.

According to the notice to consumers posted on Pulse Urgent Care Center’s website, an investigation was conducted with the help of a leading cybersecurity and forensic firm revealed that the compromised data included both personally identifiable information (PII) and protected health information (PHI).

The exposed information may include patient names, dates of birth, home addresses, phone numbers, Social Security numbers, driver's license number, medical information and health insurance details. The exposure of PII and PHI puts individuals at risk of identity theft and medical fraud.

Pulse Urgent care disclosed the data breach to the California Attorney General on Dec. 26, 2025. The company has notified impacted individuals by mail.

A disclosure to the Dept. of Health & Human Services notes that 4,035 people had their protected health information exposed.

Pulse Urgent Care Center’s response

Pulse Urgent Care Center is conducted an investigation and took additional steps to enhance the security of its network environment. The company is also offering 12 months of complimentary identity protections services through Cyberscout, a TransUnion company.

If you receive notification from Pulse Urgent Care Center or your provider about this breach, you may want to:

• Sign up for the free Cyberscout identity theft protection services, offered by Pulse Urgent Care Center.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

For those seeking more information or assistance, Pulse Urgent Care Center has set up a dedicated phone line at 530-722-1111, available Monday through Friday from 8:30 a.m. to 4:30 p.m. PT.