INTEGRIS Health Data Breach – Investigated by Federman & Sherwood
June 29, 2026 – Federman & Sherwood, a national consumer protection law firm, is investigating the INTEGRIS Health data breach, a cybersecurity incident involving unauthorized access to sensitive patient information that was disclosed in a security notice provided to affected individuals.
According to the notice, INTEGRIS Health previously contracted with Cerner for electronic health record services. Cerner notified INTEGRIS Health that it had discovered an unauthorized third party gained access to personal health information stored in legacy Cerner systems beginning as early as January 22, 2025. Following a comprehensive investigation and data analysis, Cerner confirmed on November 3, 2025, that the incident involved information relating to INTEGRIS Health patients. INTEGRIS Health then initiated its own investigation to determine the scope and impact of the incident on its patients.
According to the notice, the information potentially exposed includes individuals’ names, Social Security numbers, and information contained within patient medical records. Depending on the individual, the compromised information may include medical record numbers, treating physicians, diagnoses, medications, laboratory test results, medical images, and treatment information.
Healthcare data breaches involving electronic health record vendors are particularly concerning because they may expose highly sensitive protected health information and personally identifiable information. The unauthorized disclosure of this information may increase the risk of identity theft, medical identity theft, insurance fraud, and other forms of misuse.
Federman & Sherwood is actively investigating whether INTEGRIS Health and its third-party electronic health record vendor implemented reasonable cybersecurity safeguards to protect sensitive patient information and whether this data security incident could have been prevented. The firm is also evaluating potential legal claims on behalf of individuals affected by the INTEGRIS Health data breach.
According to the notice, Cerner engaged cybersecurity specialists and federal law enforcement to investigate the incident. INTEGRIS Health also reported that it is reviewing and updating its policies and procedures relating to data protection and vendor security. Affected individuals are being offered 24 months of complimentary Experian IdentityWorks credit monitoring and identity restoration services.
Consumers who received a notice regarding the INTEGRIS Health data breach or who believe their personal or medical information may have been compromised are encouraged to monitor healthcare statements, explanation of benefits records, financial accounts, and credit reports for suspicious activity.
The potentially compromised information may include:
- Names
- Social Security numbers
- Medical information
- Health insurance information
- Other sensitive information
What is INTEGRIS Health?
INTEGRIS Health is Oklahoma’s largest not-for-profit health care system.
Individuals affected by the INTEGRIS Health data breach may have legal rights and are encouraged to contact Federman & Sherwood to learn more about their options.
Phone: 1-800-237-1277 | Email: info@federmanlaw.com