Sanderling Healthcare Breach: 25 Years of Data Stolen

On July 3, 2025, Sanderling Healthcare became the victim of a significant ransomware attack that may have impacted thousands of patients. The data breach was orchestrated by the Sarcoma group disclosed on the dark web, where the attackers claimed to have hacked and accessed sensitive data from the company’s systems.

According to the dark web posting, the breach resulted in the compromise of tens of thousands of personal records. The attackers claimed to have stolen a full Oracle database backup containing 25 years of the company’s work history, which included both patient and business data.

The exposed information reportedly includes both personally identifiable information (PII) and protected health information (PHI). Compromised information could include names, dates of birth, contact information, Social Security numbers, driver's license or state ID numbers, medical records, health insurance information and payment information.

This data breach breach is considered severe, due to the amount of compromised information, and increases the risk of identity theft, fraud, and unauthorized use of medical information. The Sarcoma group's claim to have full database backups and years of company history may suggest that the attackers had deep access to Sanderling Healthcare’s network prior to detection.

Sanderling Healthcare's response

While Sanderling Healthcare has not yet issued a public statement, the organization will work to identify the then notify impacted individuals. Sanderling Healthcare will also be required to make certain state and federal disclosures.

If you believe your personal and protected health information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Sanderling Healthcare.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

Sanderling Healthcare offers credit monitoring or identity protection services, individuals should consider enrolling. For more information about the healthcare organization, visit the Sanderling Healthcare website.