EarlyNarratives
Pricing
Start free trialSign in
Start free trialSign in
Signal

Cookeville Medical Center discloses ransomware breach affecting 337,000 patients

Evidence first: scan the strongest sources, then decide whether to go deeper.

Published 2026-04-16 12:40 UTCUpdated 2026-04-16 15:01 UTC
rss
cvebreachransomwareincident_responsesecurity_policy
Source links open
Source links and full evidence are open here. Archive history, compare-over-time, alerts, exports, API, integrations, and workflow are paid.
BackEvidence (2)Get the free brief by emailStart free trial
No card needed for the free brief.
Evidence trail (top sources)
top sources (2 domains)domains are deduped. counts indicate coverage, not truth.
2 top sources shown
Data Breach at Tennessee Hospital Affects 337,000
SecurityWeek · News · securityweek.com · 2026-04-16 12:40 UTC
limited source diversity in top sources
View all evidence
Overview

In July 2025, Cookeville Regional Medical Center (CRMC) in Tennessee suffered a ransomware attack by the Rhysida group, resulting in the theft of 500GB of sensitive patient data. Over 337,000 patients were affected by this breach, which was publicly disclosed in April 2026. This incident underscores the persistent threat ransomware poses to healthcare providers and the critical need for robust cybersecurity measures in the sector.

Entities
Cookeville Regional Medical CenterRhysida ransomware group
Score total
1.02
Momentum 24h
2
Posts
2
Origins
2
Source types
1
Duplicate ratio
0%
Why now
  • The breach was disclosed recently, bringing renewed attention to healthcare cybersecurity risks.
  • Ransomware remains a prevalent threat vector in the healthcare sector in 2026.
  • Understanding recent incidents helps organizations strengthen defenses against similar attacks.
Why it matters
  • Healthcare data breaches expose sensitive patient information, risking privacy and trust.
  • Ransomware attacks on hospitals disrupt critical services and can endanger patient safety.
  • Large-scale breaches highlight the need for improved cybersecurity and incident response in healthcare.
LLM analysis
Topic mix: lowPromo risk: lowSource quality: medium
Recurring claims
  • Rhysida ransomware group targeted Cookeville Regional Medical Center in July 2025, stealing 500GB of data.
  • Over 337,000 patients were notified about the data breach caused by the ransomware attack.
How sources frame it
  • SecurityWeek: neutral
  • Infosecurity Magazine: neutral
All evidence
All evidence
Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack
Infosecurity Magazine · infosecurity-magazine.com · 2026-04-16 15:01 UTC
Data Breach at Tennessee Hospital Affects 337,000
SecurityWeek · securityweek.com · 2026-04-16 12:40 UTC
Show filters & breakdown
Posts loaded: 0Publishers: 2Origin domains: 2Duplicates: -
Showing 2 / 0
Top publishers (this list)
  • Infosecurity Magazine (1)
  • SecurityWeek (1)
Top origin domains (this list)
  • infosecurity-magazine.com (1)
  • securityweek.com (1)