Sunflower Medical Breach Affects 220,968 Patients

On January 7, 2025, Sunflower Medical Group, P.A., a healthcare provider in the Kansas City area, discovered a data breach that compromised sensitive consumer information. This breach has affected a significant number of individuals, with 220,968 people impacted across the United States. The breach involved unauthorized access to personal and medical information, which raises concerns about the potential misuse of this data.

The exposed information included names, addresses, social security numbers, medical info, and dates of birth.

The breach was reported to various state attorney generals, including California on March 8, 2025, Maine on March 9, 2025, Texas on March 11, 2025, and Vermont on March 10, 2025. In Texas, 1,455 individuals were affected, while Maine saw 36 individuals impacted.

Sunflower Medical Group's Response

In response to the breach, Sunflower Medical Group has taken steps to notify affected individuals. Consumers were informed via U.S. Mail on March 7, 2025. The company has not publicly detailed additional resources or support offered to those affected, but individuals are encouraged to monitor their financial accounts and credit reports closely for any signs of identity theft or fraud.

Given the sensitivity of the information exposed, affected individuals should consider placing a fraud alert on their credit files and possibly freezing their credit to prevent unauthorized access. It is also advisable to change passwords for online accounts and remain vigilant for phishing attempts that may exploit the compromised data.