BIRMINGHAM, AL, January 6, 2026 – Methodist Homes of Alabama and Northwest Florida has confirmed a data security incident linked to unauthorized access in an employee's email account, impacting the personal and health information of residents and employees.
On May 21, 2025, the organization became aware of unusual activity within the email account of one of its users. "Upon discovery, Methodist Homes took action to secure its systems," said a spokesperson for the organization. This involved engaging cybersecurity professionals to investigate the issue.
"Upon discovery, Methodist Homes took action to secure its systems,"
By the Numbers
The investigation revealed that an unauthorized individual had access to the email account between May 8 and May 21, 2025. The compromised information included a mix of personal data. For residents, the data included names alongside Social Security numbers, birth dates, Medicare numbers, and health-related details. For employees and prospective employees, the accessed information encompassed names, Social Security numbers, passport numbers, driver's license numbers, medical history, health insurance information, and access credentials related to their email accounts.
By the Numbers
By the Numbers
By the Numbers
In response to the incident, Methodist Homes has been proactive in communicating with affected individuals. On January 5, 2026, notices were mailed to those whose addresses were on record, detailing the breach and the potential risks associated with their compromised information.
By the Numbers
"We recognize how vital it is to keep our residents and staff informed about this incident," the spokesperson added. To ensure further support, Methodist Homes has partnered with CyberScout, a TransUnion company, to provide free credit monitoring services to individuals whose Social Security numbers were involved.
"We recognize how vital it is to keep our residents and staff informed about this incident,"
Individuals with questions regarding the data breach have been encouraged to reach out to a toll-free call center set up by Methodist Homes. "The call center can be reached at 1-833-985-2331, Monday through Friday, from 8:00 am to 8:00 pm ET, excluding major U.S. holidays," the spokesperson mentioned.
Looking Ahead
To mitigate future incidents, Methodist Homes is implementing additional security measures and has alerted various regulatory bodies. "We are reporting the incident to the Offices of Attorneys General for Florida, Alabama, other state regulatory authorities, and the Department of Health and Human Services, as well as the Office for Civil Rights," said the spokesperson, emphasizing their commitment to transparency and security.
"We are reporting the incident to the Offices of Attorneys General for Florida, Alabama, other state regulatory authorities, and the Department of Health and Human Services, as well as the Office for Civil Rights,"
As methods of cyber intrusion become increasingly sophisticated, healthcare providers such as Methodist Homes must remain vigilant. Their response to this breach reflects a growing awareness of the need for robust cybersecurity protocols to protect sensitive information in the healthcare sector.
