QualDerm Partners Data Breach

Key facts: QualDerm Partners data breach

• Date reported: March 24, 2026.
• Unauthorized access identified: December 24, 2025.
• Target entity: QualDerm Partners (qualderm.com).
• Source of breach: Unknown, unauthorized third party.
• Data types: Names, dates of birth, medical record numbers, dates of death, email addresses, treatment and diagnosis information, health insurance details, and driver’s license numbers.
• Status: Confirmed; reported to the U.S. Department of Health and Human Services (HHS).
• Severity: Critical; involves sensitive medical and government identification for over 3.1 million individuals.

What happened in the QualDerm Partners data breach?

QualDerm Partners (qualderm.com) disclosed a significant data breach on March 24, 2026. The Tennessee-based healthcare management services provider, which supports 158 dermatology and plastic surgery practices across 17 states, identified unauthorized network access involving an unidentified third party.

The incident, discovered on December 24, 2025, involved the exfiltration of sensitive personal and medical data belonging to approximately 3,117,874 individuals over a two-day period. The breach is classified as critical due to the volume of records and the sensitivity of the medical and government identification information involved, including treatment and diagnosis data. QualDerm has reported the event to the U.S. Department of Health and Human Services (HHS) and has taken steps to contain the activity. Such incidents typically heighten the risk of targeted phishing and identity theft for those affected.

Who is behind the incident?

The attacker or cause of the incident has not been identified.

Impact and risks for QualDerm Partners customers

The exposure of medical records, diagnosis information, and driver’s license numbers poses a severe risk to affected individuals. This information could potentially be used for medical identity theft, where attackers seek treatment or insurance payouts under a victim's name. Furthermore, the presence of names and email addresses increases the likelihood of sophisticated phishing campaigns designed to harvest further credentials or financial details.

Breaches of this scale often lead to long-term identity monitoring requirements for victims. Impacted individuals should remain vigilant, review their health insurance statements for unauthorized activity, and consider placing a fraud alert on their credit files. Proactive transparency from the provider is essential in helping victims mitigate these risks.

How to protect against similar security incidents

Given the sensitive nature of the medical and identification data exposed in the QualDerm Partners breach, affected individuals should take immediate steps to secure their personal information.

• ‍Monitor medical and financial records. Review Explanation of Benefits (EOB) statements from health insurers for any unrecognized services. Check bank and credit card statements regularly for suspicious activity.‍
• Enable identity theft protection. Enroll in the 12 months of free credit monitoring services offered by QualDerm Partners. Consider placing a security freeze on your credit reports to prevent unauthorized accounts from being opened.‍
• Practice phishing awareness. Be cautious of unsolicited emails, texts, or phone calls requesting sensitive information. Verify the identity of any caller claiming to be from a healthcare provider or insurance company.‍
• Implement continuous security monitoring. Organizations should utilize attack surface management tools to identify vulnerabilities. Ensure all systems are patched and monitored for unauthorized access attempts.

Maintaining a proactive security posture is vital for protecting sensitive healthcare data from evolving cyber threats.

Frequently asked questions

What happened in the QualDerm Partners security breach?

On March 24, 2026, QualDerm Partners (qualderm.com) disclosed a security breach. According to initial reports, an unauthorized third party accessed the network in late December 2025, exfiltrating sensitive medical and personal data belonging to over 3.1 million individuals.

When did the QualDerm Partners breach occur?

The QualDerm Partners breach was publicly reported on March 24, 2026. The incident was discovered on December 24, 2025, following unauthorized network access that occurred over a two-day period in late December.

What data was exposed?

The types of data involved in the QualDerm Partners incident include names, dates of birth, medical record numbers, dates of death, email addresses, treatment and diagnosis information, health insurance details, and government-issued identification such as driver's license numbers.

Is my personal information at risk?

If you interacted with QualDerm Partners, there's a possibility your personal information could be affected. Similar incidents often involve email addresses, login details, or financial records. Stay alert for updates and take precautionary measures to secure your accounts.

How can I protect myself after a data breach?

• Enroll in the provided credit monitoring services
• Monitor health insurance statements for unauthorized claims
• Change passwords on sensitive medical and financial accounts
• Enable multi-factor authentication (MFA)
• Be wary of phishing attempts referencing medical care

What steps should companies take after being breached?

QualDerm Partners has reported the incident to HHS, contained the unauthorized activity, and is offering 12 months of free identity theft and credit monitoring services to affected individuals. The company is also working to enhance its system security and deploy attack surface management.

This cybersecurity news article is powered by UpGuard Breach Risk — continuous attack surface monitoring for your organisation and supply chain.