The HIPAA Breach Report for August 2025 analyzes protected health information (PHI) breaches affecting 500 or more people as reported to the Department of Health and Human Services (HHS) in July 2025.
These charts compare the HIPAA data breach statistics from previous Paubox HIPAA Breach Reports (August 2021, August 2022, August 2023, and August 2024) with this month’s report.
Network server breaches affected the most people overall in May 2025.
The number of people affected by network server breaches is almost four times that of the previous year's July.
The number of individuals impacted by Email breaches were down year-over-year, but significantly up from two years ago.
Network server breaches were, as usual, the most frequent attack vector.
Email, as a the vector, was up 40% than the previous year's July.
Network server breaches affected the most people in June 2025. Anne Arundel Dermatology had the most significant breach, which affected almost 2 million people. Radiology Associates of Richmond, Inc. had the second-largest breach, affecting nearly 1.5 million people.
Overall, over 4 million individuals had their data accessed via 51 breaches reported in July 2025.
Click here to view the HHS’ raw data via Google Sheets.
The Paubox HIPAA Breach Report analyzes recent PHI breaches that affected 500 or more individuals, as reported on the HHS Wall of Shame in July 2025.
SEE ALSO: HIPAA Compliant Email: The Definitive Guide
Robust inbound email security is a necessity for businesses today. Keeping your email security strategy updated helps ensure the protection of your network.