Medicare directory exposes Social Security numbers of US healthcare providers

May 1, 2026

concept of leaky software, data with a tap sticking out.3d illustration

(Adobe Stock)

A directory created by the Centers for Medicare and Medicaid Services (CMS) has exposed the Social Security numbers of a number of US healthcare providers, according to a recent report by Tech Radar.

The database, intended to populate a Medicare directory launched by CMS as part of plans to modernize Medicare, was left publicly accessible. This database contained the Social Security numbers of healthcare providers, which CMS stated were entered by mistake due to incorrect entries of provider-supplied information. The agency has since taken steps to address the issue and reinforce data safeguards. The exact number of exposed Social Security numbers has not been disclosed, nor has information on whether providers have been notified. The database was removed after being flagged by The Washington Post.

Healthcare providers concerned about potential exposure are advised to place fraud alerts on their credit, review credit reports, and file complaints with relevant authorities like the Federal Trade Commission and the Internet Crime Complaint Center.

Source: Tech Radar

SC Staff

Oracle Corporation location. Oracle offers technology and cloud based solutions II

Data Security

ShinyHunters gang targets Oracle PeopleSoft servers in data theft attacks

SC StaffJune 10, 2026

The ShinyHunters gang is exploiting a combination of old and zero-day vulnerabilities, referred to as a "gadget chain," to target both cloud and on-premises Oracle PeopleSoft instances.