The HIPAA Breach Report for November 2025 analyzes protected health information (PHI) breaches affecting 500 or more people as reported to the Department of Health and Human Services (HHS) in October 2025.

 

This report covers:

 

HIPAA breaches ranked by people affected

Bar chart showing HIPAA breaches ranked by attack vector, with network server breaches affecting 1,419,860 people, far exceeding other breach types

 

Most common breaches by type

  • Network server breaches affected the most people. 1,419,860 individuals had their data breached.
  • Email breaches were the second most common breach, with 38,155 people affected.
  • Electronic medical record breaches affected 20,081 people, the third most impactful breach type.

HIPAA breaches ranked by occurrence

Bar chart showing HIPAA breaches by attack vector, with network server at 22 occurrences being the most common

 

Most common breach types

  • Network server was the most common attack vector. There were 22 network server breaches.
  • Email breaches were the second most common attack vector. There were 6  breaches.
  • Electronic medical record breaches were the third most common attack vector, with 4 attacks.

 

Year-over-year comparison

These charts compare the HIPAA data breach statistics from previous Paubox HIPAA Breach Reports (November 2021, November 2022, November 2023, and November 2024) with this month’s report.

 

HIPAA breaches ranked by people affected

Bar chart comparing HIPAA breaches by attack vector (Desktop, Election, Email, Listserv, Network, Other) across 2021–2025, with Network breaches peaking at 5.1 million people affected in 2024

 

What we observe

  • Network server breaches affected the most people overall in October 2025.

  • The number of people affected by network server breaches is significantly lower than that of the previous year.

  • The number of individuals impacted by Email breaches in October 2025 was almost three times lower compared to the previous year.

 

HIPAA breaches ranked by occurrence

Bar chart comparing HIPAA breaches by attack vector across 2021–2025, showing network server as the most frequent breach type.

What we observe

  • Network server breaches were, as usual, the most frequent attack vector. 

  • Email was lower than in previous years, but still the second most common attack vector.

Takeaways

Network server breaches affected the most people in October 2025. Northwest Radiologists, Inc./Mount Baker Imaging had the most significant breach, which affected 362,713 people. Expert MRI had the second-largest breach, affecting 209,560 people.

Overall, over 1.5 million individuals had their data accessed via 33 breaches reported in October 2025.

Full data

Click here to view the HHS’ raw data via Google Sheets.

About the Paubox HIPAA Breach Report

The Paubox HIPAA Breach Report analyzes recent PHI breaches that affected 500 or more individuals, as reported on the HHS Wall of Shame in September 2025.

SEE ALSO: HIPAA Compliant Email: The Definitive Guide

Robust inbound email security is a necessity for businesses today. Keeping your email security strategy updated helps ensure the protection of your network.