Skip to main content
Health Center

Stockton Cardiology Data Breach Investigation

Written by Joseph Lyon on . Posted in Data Breach.

A California cardiology practice is at the center of a serious data breach that may have exposed the sensitive personal and medical information of patients across the San Joaquin Valley. Stockton Cardiology Medical Group, which operates five locations throughout Central California, has confirmed that an unauthorized party accessed and removed files from its systems, and that some of that data has since been published online. Contact our data breach lawyers to learn more about your legal options. 

What Happened at Stockton Cardiology?

The incident allegedly began on December 15, 2025, when suspicious emails were sent to several Stockton Cardiology employees. Although those emails were promptly deleted, a subsequent investigation revealed that files maintained for business and patient care purposes may have been accessed and taken by an unauthorized individual.

On January 17, 2026, the practice discovered that certain files may have been accessed and removed, and it launched a full investigation to assess the extent of the breach and secure its systems.

By February 17, 2026, the hacking group GENESIS claimed responsibility for the attack through a dark web posting, stating that it had obtained 645 gigabytes of data, including healthcare, personal, and financial information, as well as operational data from the practice’s file servers.

The breach was formally reported to the California Attorney General, and the reported breach date is listed as December 15, 2025, with a reporting date of March 20, 2026.

What Information Was Exposed?

Based on the investigation, the types of patient information that may have been compromised include:

  • Patient names
  • Mailing and email addresses
  • Billing records
  • Limited medical information

The stolen data is considered highly sensitive and potentially dangerous to affected individuals. In past cyberattacks with similar profiles, victims have experienced a range of harmful consequences, including fraudulent charges on bank or credit card accounts, unauthorized credit applications, medical or government services ordered in their name, and a significant increase in spam calls, texts, and emails.

Who Is Affected?

Stockton Cardiology has offices in Lodi, Stockton, Manteca, Tracy, and San Andreas, California. Anyone who received cardiology care at any of these locations and provided personal or billing information could potentially be affected by this breach. Patients who have received a notification letter from the practice should take it seriously and act quickly to protect themselves.

Healthcare data breaches are uniquely harmful because the information involved goes far beyond what is exposed in a typical financial data breach. Medical records are permanent. Unlike a stolen credit card number that can be changed, your health history, diagnoses, and billing records follow you for life. When that information ends up on the dark web, it can be used for medical identity theft, insurance fraud, and targeted scams.

What You Should Do Now

If you believe you may have been affected by the Stockton Cardiology data breach, there are several steps you should take right away:

  • Monitor your bank accounts and credit reports for unusual activity
  • Place a fraud alert or credit freeze with the major credit bureaus
  • Watch for unexpected medical bills or explanation of benefits notices for services you did not receive
  • Be cautious of phishing emails or calls that reference your personal information
  • Keep a record of any suspicious activity you notice

Your Legal Rights as a Breach Victim

California has some of the strongest data privacy laws in the country. Under the California Consumer Privacy Act and other applicable laws, individuals whose data is mishandled by an organization may have the right to seek compensation. Healthcare providers that hold patient information have a legal duty to protect it, and when they fail to do so, affected patients may be entitled to relief.

The Lyon Firm has extensive experience representing individuals in data breach cases, including those involving healthcare providers. If your information was exposed in the Stockton Cardiology breach, our team can review your situation, explain your options, and pursue the compensation you may be owed. We handle these cases on a contingency basis, which means you pay nothing unless we win.

Contact The Lyon Firm today for a free, confidential consultation. You have rights, and we are here to help you enforce them.

CONTACT THE LYON FIRM TODAY

Please complete the form below for a FREE consultation.

  • This field is for validation purposes and should be left unchanged.