A major U.S. hospital network said a ransomware attack exposed personal information tied to about 1.5 million patients, underscoring the growing security risks facing the healthcare sector. The compromise reportedly included names, Social Security numbers, and medical records.

The disclosure adds to a long list of cyberattacks targeting healthcare providers, where sensitive data and service disruptions can put patients at immediate risk. Hospitals and clinics remain attractive targets because of the value of medical and identity data on the black market.

The network confirmed the breach today, but details about the attackers, the exact timeline, and whether the stolen information has been misused were not immediately clear. Patients affected by such incidents are often left dealing with fraud concerns, privacy violations, and the burden of monitoring their accounts.

The incident is another reminder that healthcare institutions face urgent pressure to harden defenses, improve backup systems, and limit the damage caused when criminal groups exploit weak points in critical infrastructure.