The Oatmeal Bite

The Oatmeal Bite

CareCloud EHR Breach Crisis

45,000 providers discovered their EHR was breached — and the CareCloud incident reveals the systemic cybersecurity vulnerabilities in cloud-based healthcare IT

Jonathan Govette, CEO/Oatmeal's avatar
Jonathan Govette, CEO/Oatmeal
May 30, 2026
∙ Paid

45,000 providers just discovered their EHR was breached. Here's what the CareCloud incident reveals about healthcare cybersecurity.

CareCloud, a cloud-based EHR and practice management platform serving tens of thousands of healthcare providers, disclosed a significant data breach affecting provider and potentially patient data. The breach followed a pattern that has become distressingly familiar in healthcare IT: a cloud-based platform with broad customer penetration was compromised in a way that affected multiple downstream clients simultaneously.

📊 The CareCloud breach is not an isolated incident. Healthcare data breaches have been accelerating in frequency and scale over the last three years. The 2024 Change Healthcare cyberattack — which disrupted claims processing for a significant portion of the US healthcare system for weeks — established that attacks on healthcare IT infrastructure can have systemic effects far beyond the directly targeted organization. The CareCloud incident f…

User's avatar

Continue reading this post for free, courtesy of Jonathan Govette, CEO/Oatmeal.

Or purchase a paid subscription.
© 2026 Jonathan Govette · Privacy ∙ Terms ∙ Collection notice
Start your SubstackGet the app
Substack is the home for great culture