CareCloud confirms a cyberattack on its CareCloud Health division that caused an eight-hour network disruption and potential unauthorized access to sensitive patient data on March 16, 2026.

Key points

• CareCloud reported a temporary network disruption affecting one of its six electronic health record (EHR) environments.
• The incident lasted approximately eight hours before the company restored full functionality to the affected system.
• A forensic analysis is currently underway, led by a Big Four accounting firm’s cyber response advisory team.
• The company is investigating whether patient information or other sensitive data was exfiltrated during the breach.
• No hacking group has claimed responsibility for the attack, and the company reports no material impact on operations at this time.

This incident highlights the ongoing vulnerability of healthcare technology providers to cyber threats that can compromise sensitive patient records. While the immediate operational impact was limited, the potential for regulatory scrutiny and reputational damage remains a significant concern for the company and its 40,000 healthcare providers.