Skip to main content
Health Center

Central New York Cardiology Data Breach Investigation

Written by Joseph Lyon on . Posted in Data Breach.

On February 19, 2025, Central New York Cardiology filed a notice of data breach (“hacking/IT incident”) with the U.S. Department of Health and Human Services Office for Civil Rights and has posted limited details about the incident on their website. After an investigation, CNY Cardiology concluded that sensitive personal information on its systems may have been viewed and removed by an unauthorized third party between December 26 and December 30, 2024.

It is currently unknown how many individuals have had their personal data compromised; however, it is crucial to take certain measures to protect yourself following any data security incident to help prevent medical identity theft and fraud.

What Happened at Central New York Cardiology?

The cardiology practice has confirmed that an unauthorized party accessed its IT network which resulted in the party being able to access patients’ sensitive information, including the following:

  • Names
  • Addresses
  • Dates of birth
  • Driver’s license numbers
  • Financial account information
  • Medical information (diagnoses/conditions, providers name,   treatment information)
  • Health insurance information

Central New York Cardiology has begun sending out data breach notification letters to all identified individuals whose personal information may have been affected by the data theft incident. If you receive a letter from Central New York Cardiology, it is important to understand what is at risk and what you can do to minimize the risks going forward. A data breach lawyer can assist you in learning more about how to protect yourself, and can discuss possible legal action.

Central New York Cardiology is a healthcare provider based in Utica, New York, offering a range of cardiac services, including general cardiology services, vascular services, nuclear services, non-invasive services, electrophysiology services, and transcatheter aortic valve replacement.

The data breach lawyers at The Lyon Firm are reviewing new data privacy claims on behalf of plaintiffs nationwide. We believe any healthcare entity has a duty to properly protect your collected data. Our attorneys have filed numerous data breach lawsuits, and we have reached generous settlements on behalf of our clients.