Arkansas Health System Breach Exposes Data of Over 100,000 Patients
June 25, 2025 – Monticello, Arkansas — A devastating data breach at Mainline Health Systems, a nonprofit healthcare provider in Southeast Arkansas, has compromised the personal and medical information of more than 101,000 individuals, according to official disclosures filed with the Maine Attorney General’s Office.
The breach, which occurred in April 2024, went undetected for over a year. It wasn’t until May 21, 2025, that Mainline confirmed unauthorized access to sensitive files following a forensic investigation. The exposed data includes Social Security numbers, financial account details, payment card information, medical diagnoses, treatment records, and health insurance data.
Ransomware Group Claims Responsibility
The INC Ransom group, a known cybercriminal organization, has claimed responsibility for the attack. The group reportedly posted stolen documents on its dark web leak site as proof, escalating concerns about the potential misuse of the data.
Delayed Notification Raises Eyebrows
Mainline began notifying affected individuals only this week, sparking criticism over the 13-month delay. Cybersecurity experts warn that such delays can significantly increase the risk of identity theft and fraud, especially when medical and financial data are involved.
“This kind of information is a goldmine for cybercriminals,” said Rebecca Moody, head of data research at Comparitech. “The longer it remains unaddressed, the greater the damage.”
Vulnerable Communities at Risk
Founded in 1978, Mainline Health Systems operates over 30 clinics, many of which serve uninsured and underinsured populations. The breach disproportionately affects vulnerable patients who may lack the resources to monitor or recover from identity theft.
What’s Being Done
Mainline has offered 12 months of free credit and identity monitoring through IDX and says it has enhanced its cybersecurity protocols. However, legal experts suggest that affected individuals may have grounds for legal action, especially given the delay in notification and the sensitivity of the data involved.
For more information, you can read the full coverage on , , or .
