Third-party data breach prompts patient alert at Jupiter Medical Center

Jupiter Medical Center in Florida has begun notifying patients after learning that a data breach at a former electronic health record vendor exposed historical patient information, hospital officials confirmed.

The hospital received notice on Jan. 14 that Cerner Corporation, a healthcare technology company specializing in electronic health record systems, experienced a cybersecurity incident involving legacy data stored on its servers. The breach did not involve Jupiter Medical Center’s internal information systems, but may have affected patient data that had previously been managed by Cerner.

Hospital officials stated that an unauthorized third party gained access to personal health information on Cerner’s legacy systems as early as Jan. 22, 2025. The activity was identified during an investigation completed on Nov. 30, 2025. Cerner informed the hospital that notifications to patients and client health systems were delayed at the request of law enforcement to avoid interfering with an active investigation.

Information potentially involved in the incident includes patient names, Social Security numbers, and details contained in medical records, such as medical record numbers, physicians, diagnoses, medications, test results, images, and information related to care and treatment.

Jupiter Medical Center emphasized that its own computers were not impacted and that protecting patient privacy remains a priority. The hospital said it is notifying potentially affected individuals and providing guidance on steps they can take to protect their personal information.

Cerner reported that it initiated its incident response process upon discovering the breach, secured affected systems with assistance from external cybersecurity experts, and worked with federal law enforcement authorities. To support individuals who may have been affected, Cerner is offering free identity protection services through Experian, including two years of three-bureau credit monitoring and internet monitoring for those who enroll.

Cerner has attempted to notify impacted individuals by mail, providing a letter with an engagement number and contact details. Patients who believe they may have been affected but did not receive a letter are advised to call Cerner’s incident response hotline at 833-931-5355. Additional information is available through the same toll-free number, Monday through Friday from 8 a.m. to 8 p.m.