Community Health Center of Buffalo breach and Greenbaum Rowe law firm expose patient data

Two separate cybersecurity incidents affect healthcare patients as a New York community health center and a New Jersey law firm report data exposures.

MRAdmin
By
2 Min Read

Community Health Center of Buffalo (CHCB) in New York has confirmed a cybersecurity incident that may have exposed sensitive patient information, including names, Social Security numbers, medical histories, and health insurance data. Suspicious activity was detected within CHCB’s network on April 21, 2026, with forensic investigators determining that unauthorized access occurred between April 20 and April 21. The review of affected files is ongoing, but CHCB has reported the incident to the HHS Office for Civil Rights, estimating at least 501 affected individuals.

Separately, the New Jersey law firm Greenbaum Rowe Smith & Davis began notifying 12,801 individuals about a breach involving protected health information belonging to patients of Atlantic Health System, Hackensack Meridian Health, and Trinitas Regional Medical Center. The firm, which provides legal services to healthcare practices, reported that unauthorized actors accessed systems containing patient data including names, Social Security numbers, and medical records.

Both organizations are offering complimentary credit monitoring and identity theft protection services. The incidents highlight how healthcare data continues to be exposed not only through direct provider attacks but also through third-party service providers such as law firms with access to protected health information. Affected patients should review their credit reports and monitor healthcare statements for suspicious activity.

Share This Article