Impact & Downstream Threats
This breach carries high risk due to the nature of exposed data fields and the scale of affected records.
- Identity theft and synthetic identity construction using government-issued IDs
- SIM swap attacks where phone numbers are present
- Targeted phishing campaigns using exposed email addresses
- Doxxing risk from physical address exposure
Breach Intelligence
Executive Summary
Patient and Employee Information Reportedly Compromised, ,
, NASHVILLE, TN -, Sanderling Healthcare is currently investigating a significant data breach that reportedly occurred in early July 2025, potentially exposing the sensitive personal and protected health information of a large number of individuals. While the healthcare company has yet to issue a formal public statement, details have emerged through cybersecurity watchdog groups and law firms that are now exploring potential legal action. ,
, What Happened?, ,
, The breach is believed to have been a ransomware attack orchestrated by a group known as "Sarcoma." The attack is alleged to have taken place on or around July 3, 2025. The perpetrators claim to have exfiltrated approximately 587GB of data from Sanderling Healthcare's systems. The "Sarcoma" group has reportedly listed Sanderling Healthcare on its dark web leak site, a common tactic used by such groups to pressure victims into paying a ransom, threatening to publicly release the stolen data if their demands are not met. ,
About Sanderling Healthcare
Sanderling Healthcare is an organization whose data was exposed in this breach. The dataset has been verified by ObscureIQ intelligence and indexed across breach notification platforms.
Data Points Exposed
Dark Web Verification
Status: Confirmed
- Dataset containing approximately 40K records identified in breach intelligence sources.
- The data is indexed and searchable across breach notification platforms.
Recommended Actions
⚠️ Do not assume this is low sensitivity.
Non-clients may request a breach impact review.
Frequently Asked Questions
In July 2025, Sanderling Healthcare experienced a data breach that exposed approximately 40K records containing personal information.
The exposed data includes fields such as email address, phone number, physical address:home, ssn.
Approximately 40K records were affected based on current breach intelligence.
Protect Yourself
Check If You’re Affected
Enter your email to check if your data appears in this breach.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed.
High-Risk? Get an Exposure Audit
Full-spectrum exposure audits for executives and public figures.
ObscureIQ Advisory
We combine proprietary dark web access with commercial and restricted breach intelligence to verify exposure and assess real-world risk.
- A public-facing individual
- A high-profile executive
- A customer of Sanderling Healthcare
- Or concerned about credential reuse
Powered by the ObscureIQ Breach Intelligence Database
© 2026 ObscureIQ · All Rights Reserved · Data Licensing
Latest from ObscureIQ
What Is Credit Monitoring? And Do I Want It? (Answer: Not Really)
Lock Down Browsers. Wipe Employee Footprints. Win Breach Wars.
Sextortion Spam