.png)
Outcomes One Data Breach Investigation
Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the Outcomes One, Inc. data breach.
If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.
About Outcomes One
Outcomes One, Inc. is a healthcare technology company based in Orlando, Florida. The company operates the OutcomesOne platform, a digital hub designed to streamline pharmacy workflows, improve patient engagement, and support business operations for pharmacies across the United States. Support services provided include digital tools for medication therapy management, telepharmacy, appointment scheduling, and reporting.
Outcomes One, Inc. is part of Cardinal Health and partners with pharmacies, payers, and pharmaceutical manufacturers to deliver clinical care programs. The company's platform serves a network of more than 48,000 pharmacies, impacting over 70 million patient lives nationwide.
What happened?
On July 1, 2025, Outcomes One experienced a data breach caused by an email phishing incident. An employee noticed unusual activity in their email account, which prompted an investigation. It was determined a cybercriminal gained access to the hacked email account lasted for about one hour..
During this time, various files and emails containing sensitive information were accessed. By July 17, 2025, Outcomes One determined that the cyberattack affected 149,094 individuals in the United States. The company began notifying impacted consumers by mail on Sept. 23, 2025.
Information Exposed
- Name
- Demographic information
- Health insurance information
- Medical provider name
- Medication information
Outcomes One disclosed the data breach to the California, Montana, Oregon and Texas Attorneys' General offices on Sept. 23, 2025.
Your Rights and Next Steps
If you received a data breach letter from Outcomes One, or believe you may have been impacted, it is important to know your rights. Under state and federal law, individuals affected by the breach have the right to seek compensation for potential damages, including the risk of identity theft, privacy violations, and emotional distress.
- Communication and credit monitoring services: Review and save any notification letters you receive. Enroll in free credit monitoring and identity protection services, if offered.
- Monitor your accounts carefully: Check your financial statements regularly for suspicious activity or unauthorized transactions. If you notice anything unusual, contact your financial institution immediately.
- Fraud alert and credit reports: A fraud alert informs creditors to take extra steps to verify your identity before opening new accounts in your name. Consumers are also entitled to one free credit report annually from each credit bureau. You can request a fraud alert or a credit report by contacting any one of the three major credit bureaus.
- Seek legal help: Lawyers are ready to help you understand your rights and pursue compensation.
Legal professionals can guide you through the process of joining a class action lawsuit or filing an individual claim.
You May Be Entitled to Compensation
If you were affected by the Outcomes One data breach, you may be eligible for financial compensation. Lawyers are investigating this incident and are available to discuss your right to pursue damages.
To find out if you qualify and take the first step, complete the form below to join the lawsuit.
.svg)