UI Community Homecare Data Breach Exposes Sensitive Info

Published

September 3, 2025

Updated

September 5, 2025

UI Community Homecare

Types of INFORMATION affected

Names
Social Security Numbers
Dates of Birth
Addresses
Government IDs
Medical Info
Financial Info

UI Community HomeCare, a provider of home infusion and medical equipment services affiliated with University of Iowa Health Care, experienced a major data breach impacting 211,000 patients. On July 3, 2025, the organization discovered that a cybercriminal accessed its computer system. An investigation determined that files containing personal and protected health data were viewed and copied.

The breach impacted both UI Community HomeCare customers and a group of University of Iowa Health Care patients. Exposed information included names, dates of birth, address, phone numbers, Social Security numbers, medical record numbers, providers, dates of service, health insurance information and types of visits.

On July 3, 2025, UI Community HomeCare, a provider of home infusion and medical equipment services affiliated with University of Iowa Health Care, experienced a significant data breach. According to the company, an unauthorized individual gained access to their computer system, allowing the cybercriminal to view and copy certain data files. The breach impacted both UI Community HomeCare customers and a group of University of Iowa Health Care patients.

UI Community HomeCare and UI Health Care began notifying affected patients by mail on Aug. 29, 2025. The organizations also posted a data privacy event notice on their websites.

The cybersecurity incident is considered severe, due to the amount of data compromised and the fact that they perpetrator successfully copied files.

UI Community Homecare's response

In addition to required state and federal disclosures, the company has set up a dedicated toll-free hotline at 833-745-0871, available Monday through Friday from 8 a.m. to 8 p.m. Central Time.

If receive a data breach notice, or believe your personal information may have been compromised in this breach:

Carefully review any notice or communication you receive from UI Community HomeCare or University of Iowa Health Care.
Monitor financial accounts and credit reports for signs of identity theft.
Consider placing fraud alerts or credit freezes with the major credit bureaus.
Be cautious of unsolicited emails or phone calls requesting personal information.

Learn more about the healthcare organization at the UI Community Homecare website.

Protect Your Data

A breach notice means your personal details could be circulating far beyond the organization involved. One practical step is continuous monitoring: services such as Identity Defender (included with an ExpressVPN subscription) can automatically check dark-web markets, flag new credit-file activity, and request removal of your information from data-broker sites.

This kind of “early-warning system” can’t undo a breach, but it can help you spot misuse quickly and limit further exposure. ExpressVPN is offering 61% off, risk-free for 30 days, with ID Theft Insurance included and no extra cost for those who sign up for one or two years.