Mass General Brigham Data Breach
Mass General Brigham Health System Breach (2023): 4 Million Patient Records Including Medical Diagnoses Exposed — Title missing 'Exposed'
Integrated healthcare system.
Risk Interpretation
Severe risk of identity theft, medical fraud, insurance abuse, and targeted phishing. The size and prestige of the institution can also make impersonation scams more effective.
Impact & Downstream Threats
The 2023 incident was part of the Cl0p ransomware group's zero-day exploitation of Progress Software's MOVEit Transfer platform, accessed through Welltok — a health engagement and data analytics vendor used by Mass General Brigham Health Plan. The breach compromised patient data for approximately 4 million individuals including names, email addresses, phone numbers, home addresses, and medical diagnoses. Mass General Brigham notified affected patients, offered credit monitoring services, and rep
- SIM swap attacks where phone numbers are present
- Targeted phishing campaigns using exposed email addresses
- Doxxing risk from physical address exposure
- Medical identity fraud or insurance abuse using health data
Threat Vectors
Breach Intelligence
Executive Summary
Mass General Brigham Health Plan was hit as part of the Cl0p ransomware group's 2023 campaign targeting Progress Software's MOVEit Transfer file transfer platform. Cl0p exploited a zero-day vulnerability in MOVEit to reach patient data held by Welltok, a health engagement and data analytics vendor used by the health plan. The breach exposed records for approximately 4.1 million patients, making it one of the larger incidents tied to that campaign. The exposed data included full names, home addresses, phone numbers, email addresses, and medical diagnoses. The combination of contact details and diagnosis information is particularly sensitive. It creates conditions for targeted phishing, insurance fraud, and medical identity theft, where criminals use someone else's information to obtain care or file false claims. The prestige of the Mass General Brigham name can also make impersonation scams more convincing to victims. Mass General Brigham notified affected patients and offered credit monitoring services following the breach. The health system is among the named parties in the consolidated MOVEit multidistrict litigation, a federal class action proceeding in the District of Massachusetts involving dozens of organizations affected by the same campaign. Affected individuals should remain alert to unsolicited contacts referencing their medical care, monitor their insurance statements for unfamiliar claims, and consider placing a credit freeze if they have not done so already.
About Mass General Brigham
Mass General Brigham is a Boston-based integrated health system formed through the affiliation of Massachusetts General Hospital and Brigham and Women's Hospital, two of the most prominent academic medical centers in the United States. The system operates more than a dozen hospitals and hundreds of outpatient locations across Massachusetts and beyond, with a combined clinical, research, and education mission. It is affiliated with Harvard Medical School and consistently ranks among the top hospital systems in national quality assessments.
Why They Hold Your Data
Integrated health systems collect patient identity, contact, insurance, billing, appointment, and clinical records across hospitals, specialty care, and administrative workflows.
Recent Developments
Mass General Brigham has continued expanding its ambulatory care and community health footprint while managing cost pressures common across large academic health systems. The system has invested in digital health and research infrastructure. No major organizational changes beyond the breach context have been prominently reported in the recent period.
Data Points Exposed
Exposure Categories
Canonical Fields
email_address, full_name, medical_diagnosis, phone_number, physical_address:home
Dark Web Verification
- Dataset containing ~4.1M records identified in breach intelligence sources
- Data indexed and searchable across breach notification platforms
- Source: massgeneralbrighamhealthplan.org-2024
Recommended Actions
⚠️ Do not assume this is low sensitivity.
Protect Yourself
Check If You’re Affected
Enter your email to check if your data appears in this breach.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed.
High-Risk? Get an Exposure Audit
Full-spectrum exposure audits for executives and public figures.
ObscureIQ Advisory
We combine proprietary dark web access with commercial and restricted breach intelligence to verify exposure and assess real-world risk.
- A public-facing individual
- A high-profile executive
- A customer of Mass General Brigham
- Or concerned about credential reuse
Powered by the ObscureIQ Breach Intelligence Database
© 2026 ObscureIQ · All Rights Reserved · Data Licensing
Latest from ObscureIQ
What Is Credit Monitoring? And Do I Want It? (Answer: Not Really)
Lock Down Browsers. Wipe Employee Footprints. Win Breach Wars.
Sextortion Spam