zHealthEHR, a cloud-based EHR and practice management platform for chiropractors and wellness providers, has allegedly been breached with a threat actor claiming to have exfiltrated 15 GB containing over 1.2 million records. The actor is demanding $500,000 with a February 17, 2026 deadline, and the exposed data reportedly includes full names, contact details, patient intake forms, clinical SOAP notes, appointment scheduling, billing records, and demographic information. #zHealthEHR #zHealth
Keypoints
- Threat actor claims to have exfiltrated 15 GB of data from zHealthEHR affecting over 1.2 million records.
- The actor listed the data on January 26, 2026, demanding a $500,000 ransom with a February 17, 2026 deadline.
- Allegedly exposed data includes full names, email addresses, phone numbers, and patient intake information.
- Clinical documentation such as customizable SOAP notes, appointment scheduling, automated reminders, and billing records are reportedly included.
- zHealthEHR serves thousands of clinics across the United States, potentially broadening the impact of the breach.
Read More: https://dailydarkweb.net/zhealthehr-data-breach-1-2-million-patient-records-extorted/