Valley Family Health Care 2026 Data Breach

Valley Family Health Care 2026 Data Breach: Patient PHI Exposed via Insomnia Ransomware

Healthcare / Community Health Center / Consumer

Valley Family Health Care 2026 Data Breach: Patient PHI Exposed via Insomnia Ransomware

Community health center serving Idaho and eastern Oregon.

Confirmed · ObscureIQ Intelligence
Breach Risk Index i
91/100
Lower riskHigher risk
High and current: recent, valuable data circulating on the dark web now.
Data Sensitivity i
Elevated
Exposed data raises the risk of fraud, targeting, and impersonation. Proactive steps are warranted.
1.9M rowsRecords
2026Year

The Breach Risk Index (BRI) is a proprietary 0–100 score rating how dangerous a breach is right now, based on how recently the data has been circulating on the dark web and how valuable it is to attackers.

Crucial data exposed
SSNSocial Security Number
Gov IDGovernment ID
Classification Tags
InsomniaRansomware / ExtortionHealthcareMedicalPatients2026

Breach Summary

In March 2026, the Insomnia data-theft group claimed a breach of Valley Family Health Care, threatening to leak stolen data. The exposed tranche included patient charts, insurance information, government IDs, dates of birth, Social Security numbers and other PHI; investigators could not confirm the exact record count.

Full threat analysis, exploitation vectors, and principal guidance below.

10 additional sections · verified field analysis · defensive doctrine

Querying breach corpus…
Cross-referencing exposed field types…
Resolving threat-actor attribution…
Compiling principal risk advisory…

1.9M rows records analyzed

About Valley Family Health Care

Valley Family Health Care is a US community health center with locations in Idaho and Oregon, providing medical, dental, women's health and behavioral-health services to largely rural and underserved patients.

Why They Hold Your Data

A community health center holds patient identity and contact data, dates of birth, Social Security numbers, government IDs, insurance information and clinical records including behavioral-health data (PHI).

Recent Developments

Valley Family Health Care disclosed a difficult early 2026 with two incidents; the Insomnia data-theft group claimed one in March 2026, and a separate third-party vendor breach was also notified.

Data Points Exposed

5 verified field types
Date of Birth High
Email Address
Full Name
Government ID Critical
Social Security Number Critical

Breach Impact

As a HIPAA-covered community provider, the breach carries OCR notification and litigation exposure and acute trust concerns for a rural patient base, compounded by a separate vendor incident the same quarter.

Principal Risk Advisory

What this means for a principal

A healthcare-linked breach: exposure ties a named individual to a provider relationship and, where clinical or insurance data is present, to conditions and treatment. For a high-profile principal this is targeting-grade, not merely identity-theft-grade: the combination lets an adversary locate, impersonate, or pressure the principal with little additional work.

What You Should Do

  1. Freeze credit at all three bureaus and monitor for new-account and tax-refund fraud.
  2. Do not use unofficial 'am I affected' lookups; several are themselves harvesting operations.

How ObscureIQ Can Help

  1. Corpus confirmation: determine whether and where the principal (plus household and staff) appear in this dataset and which specific fields are exposed for them.
  2. Exposure mapping: cross-reference the exposed identifiers against broker-available data to size and prioritize the principal's wider footprint.
  3. ThreatWatch tuned to this incident's identifiers and misuse pattern (impersonation and targeting patterns, not generic credential monitoring).
I
Threat Actor: InsomniaConfidence: Medium
Data extortion group

Motivation: Financial extortion
A data-theft-and-extortion group that emerged October 2025 focused on stealing files (patient records, drivers licenses, tax forms) and threatening exposure rather than encrypting; over half its early victims are US healthcare organizations.

Read the full threat-actor profile →

Protect Yourself

Check If You're Affected

Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.

Get Free Breach Alerts

Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.

High-Risk? Get an Exposure Audit

Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.

Request Consultation