Horizon Healthcare RCM Data Breach

CohenMalad, LLP attorneys are investigating a major cybersecurity incident involving Horizon Healthcare RCM, a revenue cycle management company based in Crown Point, Indiana.

The ransomware attack, which occurred between December 25-27, 2024, has potentially exposed sensitive health and financial data for an unknown but significant number of individuals across multiple healthcare providers.

If you received a letter about this breach, or even suspect your data may have been involved, don’t wait to protect your rights. 

Our nationally-recognized class action legal team will provide you with a free, no obligation consultation to inform you of legal rights and options. Contact our data breach legal team today.

What Patients Need to Know About the Horizon Healthcare Ransomware Attack

Horizon Healthcare RCM (also known as Horizon Financial Management, LLC) confirmed its internal systems were breached in a ransomware attack that encrypted files and led to the unauthorized exfiltration of patient data. Horizon discovered the breach on December 27, 2024. 

Recently, in late June 2025 Horizon began notifying affected individuals.

Unlike many companies that downplay cyberattacks, Horizon publicly admitted it paid the threat actors to delete the personal data in its possession. While the company’s transparency about this move is appreciated, it does not guarantee your stolen private information is truly gone. Cybercriminals often retain copies of data to sell on dark web markets later.

What Information Was Exposed?

The scope of compromised data varies by individual, but may include:

• Internal Horizon account or patient numbers
• Health insurance claims processing details
• Medical Record Numbers
• Full names and dates of birth
• Social Security numbers
• Driver’s license or passport numbers
• Email addresses or phone numbers
• Payment card and bank account information

Additionally, for a subset of affected individuals, the breach involved highly sensitive financial and government ID data, posing serious risks for identity theft, fraud, and long-term harm.

About Horizon Healthcare RCM

Horizon is a third-party billing and revenue cycle management provider. Organizations across the healthcare sector rely on companies like Horizon to process insurance claims, billing, and patient account management. That means a breach at Horizon may affect patients from numerous hospitals, clinics, or health systems nationwide—even if you’ve never heard of Horizon directly.

Identity Protection Isn’t Enough

Horizon is offering 12 months of credit monitoring through Kroll, but that doesn’t erase the risk. Breached medical and financial data can be exploited for years, long after free monitoring expires. If your Social Security number, banking info, or health history were compromised, you could face fraud, unauthorized insurance claims, or even denials of legitimate care down the road.

Learn Your Rights and Legal Options Now

CohenMalad, LLP is actively investigating Horizon’s role in this cybersecurity failure and whether it took appropriate steps to secure the sensitive data entrusted to it. Patients whose information was exposed may be entitled to compensation through a class action lawsuit.

We’ve successfully represented victims of data breaches across the country and are committed to holding negligent organizations accountable.

Call us today at 317-636-6481 or request a free, confidential consultation here.