Horizon Family Medical Group Data Breach–What You Need to Know & What to Do Next
Overview
Horizon Family Medical Group reported a cybersecurity incident after the INC Ransom ransomware group claimed responsibility for an attack in mid-June 2026. The incident potentially exposed comprehensive protected health information, financial records, and employee data.
Horizon Family Medical Group is a healthcare provider based in Orange County, New York, offering a wide range of medical services including primary care, women’s health, behavioral health, allergy and immunology, ophthalmology, and nutrition services.
According to ransomware threat intelligence, INC Ransom posted Horizon Family Medical Group to its data leak site on June 18, 2026, with an estimated attack date of June 18, 2026. The threat actor claims to have exfiltrated 7 terabytes of data spanning patient records and financial databases. The threat actor indicated that management was notified of the breach but chose not to respond, and stated the data will be preserved for archival distribution.
INC Ransom has been one of the most aggressive ransomware groups in 2025 and 2026, with over 200 victims posted to its leak sites in 2025 alone, particularly targeting healthcare and insurance organizations.
What Information Was Exposed In the Horizon Family Medical Group Data Breach?
According to the threat actors’ detailed claims, the compromised data includes extensive protected health information across multiple service lines. Patient data allegedly includes complete visit histories, diagnoses, prescriptions, lab results, and physicians’ notes from primary care services. Women’s health data includes gynecological exams, pregnancies, abortion records, Pap smear results, and STD diagnoses.
Behavioral health records include diagnoses of depression, anxiety disorders, bipolar disorder, and addiction, along with psychotherapy session notes and psychotropic medication prescriptions. Allergy data includes specific medication reactions, and ophthalmology records include eyeglass prescriptions and diagnoses such as glaucoma and cataracts. Nutrition services data includes eating disorder diagnoses and nutritionist recommendations.
The breach also allegedly includes complete SQL databases containing patient information, doctor schedules, and revenue analytics, and QuickBooks financial databases containing complete financial records, employee salaries, executive bonuses, tax reports, insurance settlements, and operational metrics.
How Horizon Family Medical Group Responded to the Breach?
As of this writing, Horizon Family Medical Group has not issued a public statement regarding the alleged ransomware attack. The organization has not confirmed the incident or provided details about its investigation or notification plans.
Healthcare providers that experience breaches involving protected health information are required to notify affected individuals, the U.S. Department of Health and Human Services, and in some cases the media, within specified timeframes under HIPAA. New York also has data breach notification laws that would apply to Horizon Family Medical Group.
How to Check If Your Personal Info Is Exposed
If you are a current or former patient of Horizon Family Medical Group or have received medical services at the Orange County, New York location, your protected health information and personal data may have been exposed in this breach. This includes patients who received care for primary care, women’s health, behavioral health, allergy, eye care, or nutrition services.
Monitoring your accounts, reviewing credit reports and explanation of benefits statements, and watching for notification letters from Horizon Family Medical Group are crucial steps in assessing your potential exposure.
What You Can Do If Your Information Was Exposed
If your medical information may have been part of the Horizon Family Medical Group breach, review your financial accounts, credit reports, and medical explanation of benefits forms for any unfamiliar activity. Update account passwords, particularly for patient portals where you may have reused passwords.
Consider placing a fraud alert or credit freeze with the three major credit bureaus (Equifax, Experian, and TransUnion). Be particularly vigilant for signs of medical identity theft and identity theft. Given the alleged exposure of behavioral health diagnoses and women’s health information, be cautious of phishing attempts that may attempt to exploit sensitive health information.
Be cautious of phishing attempts following this breach. Acting now can limit the long-term consequences and protect your personal, financial, and medical information.
Understanding Your Legal Rights: Data Breach Lawyer Near Me
Victims of data breaches may be entitled to legal remedies if a healthcare provider did not adequately safeguard their protected health information. Healthcare providers have heightened duties under HIPAA and state law to protect the sensitive medical and personal information they collect and maintain.
Almeida Law Group is actively reviewing the Horizon Family Medical Group incident to determine what legal options may be available for those affected.
If you are a patient of Horizon Family Medical Group and believe your medical information may have been exposed, you can contact Almeida Law Group for a free consultation.