FBI Investigates Oracle Cyberattack Targeting Patient Data

The FBI is investigating a recent cyberattack on Oracle (NYSE:ORCL) that led to the theft of sensitive patient data, according to a Bloomberg report citing a source familiar with the matter. Oracle reportedly alerted some U.S. healthcare clients earlier this month that hackers breached its servers after January 22, stealing patient information and transferring it to an external location.

The attackers allegedly aimed to extort several medical providers across the United States. While the exact number of affected records and targeted organizations remains unclear, the incident underscores growing cybersecurity risks in the healthcare sector.

The breach reportedly involved legacy servers from Cerner Corp (NASDAQ:CERN), a major healthcare IT company Oracle acquired in 2022 for $28 billion. This acquisition significantly expanded Oracle’s footprint in the electronic health records (EHR) space, adding numerous healthcare clients to its cloud infrastructure.

Bloomberg noted that the compromised data was stored on older Cerner systems that had not yet been migrated to Oracle’s secure cloud platform. Oracle is said to have detected the intrusion around February 20.

The breach could have broader implications due to Oracle’s $16 billion contract with the U.S. Department of Veterans Affairs, a project that has faced technical issues and scrutiny from lawmakers.

Neither Oracle nor the FBI has commented publicly on the ongoing investigation. The incident highlights the importance of data security in cloud-based healthcare systems, especially as cybercriminals increasingly target sensitive health records for financial gain.

With Oracle’s growing role in healthcare IT, the company may face increased pressure to ensure robust cybersecurity measures are in place to protect critical patient data across its platforms.