Cookeville Regional Medical Center Data Breach Investigation

Chimicles Schwartz Kriner & Donaldson-Smith is investigating potential class action claims against Cookeville Regional Medical Center in connection with a ransomware attack and related data breach that may have compromised sensitive personal and protected health information of patients and other individuals.

According to Cookeville Regional Medical Center and public reporting, the incident may have affected more than 337,000 individuals nationwide.

What Happened at Cookeville Regional Medical Center?

Cookeville Regional Medical Center reports that it discovered suspicious activity in its computer network on July 14, 2025 and promptly began an investigation, worked to secure its systems, notified law enforcement, and engaged a forensic security firm.

The forensic investigation determined that an unauthorized third party accessed the network and viewed or acquired certain files between July 11, 2025 and July 14, 2025.

Public reporting attributes the incident to the Rhysida ransomware group, which claimed responsibility and indicated that stolen data was taken from the organization during the July 2025 intrusion window.

Cookeville Regional Medical Center reports that it conducted a comprehensive review of the affected files to determine what information was involved, and it began mailing notification letters in April 2026 to individuals for whom it has a valid address.

What Information Was Compromised?

Cookeville Regional Medical Center reports that, depending on the individual, the affected files may have contained the following categories of information:

Name
Address
Date of birth
Social Security number
Drivers license number
Financial account number
Medical treatment information
Medical record number
Health insurance policy information

Why Is This Important?

Data breaches involving health and identity information can create a serious risk of identity theft, financial fraud, medical identity theft, and targeted phishing or impersonation attempts. Public reporting notes that the incident involved sensitive personal information and medical related information, which can be difficult to remediate once exposed.

What Should You Do?

If you received a notification letter from Cookeville Regional Medical Center, or believe your information may have been affected, you may contact our data breach attorneys by completing the form below to learn more about your potential legal rights and our ongoing investigation.

Cookeville Medical Center Data Breach (#896)

This is a questionnaire created by the law firm of Chimicles Schwartz Kriner & Donaldson-Smith LLP (CSK&D) to investigate potential claims related to this data breach. Your answers will be screened, and you may be contacted if your responses match certain criteria.

When you submit this form, it will not automatically collect your details like name and email address unless you provide it yourself.

First Name

Last Name

Address

Address Line 1

City

State

Zip Code

Phone

Did you receive a notice (email or letter) regarding the Cookeville Medical Center data breach?

Are you a current or former patient of Cookeville Regional Medical Center?

Have you gotten an increase in spam or junk calls, texts, and emails recently?

Have you experienced any unauthorized activity, fraud, or identity theft that you believe is related to this breach?

If you answered yes to the above, please briefly describe the suspicious activity or fraud you experienced:

Please provide any additional details about your experience:

(*) Indicates required field: When communicating with us through this site or otherwise in connection with a matter for which we do not already represent you, your communication may not be treated as privileged or confidential, and does not create an attorney-client relationship between you and our Firm.

Cookeville Regional Medical Center Data Breach Investigation

Haverford Office

Delaware Office

Awards

Site Map