What Happened
Columbia Eye Clinic (“csrcleaning.eyesimple.us”) disclosed a data breach after a network disruption discovered on January 13, 2025, with investigation showing that between January 9 and January 13, 2025 an unauthorized actor accessed files on its IT network. The breach was reported to the U.S. Department of Health and Human Services on March 14, 2025, and the exposed data could include patients’ names, contact information, dates of birth, procedure codes, and other information used for pre-approval of eye-related procedures. The source provided does not list a specific record count.


