What Happened
In 2024, Omni Family Health, a California-based network of community health centers (sometimes referenced in breach discussions alongside internal domains such as “luxe.omni”), suffered a cyberattack that led to a major data breach impacting approximately 468,344 current and former patients and employees. The incident was initially tied to a February 2024 cyberattack that caused a five‑day IT outage, but Omni did not learn data had actually been stolen until August 7, 2024, when the Hunters International ransomware group claimed to have exfiltrated data and posted it on the dark web. The exposed information varied by individual but could include names, addresses, dates of birth, Social Security numbers, health insurance and claims data, medical/clinical information, government identifiers (such as driver’s license numbers), bank account details, and, for employees, financial account data plus information on dependents and beneficiaries. Omni confirmed the authenticity of the leaked data, reported the breach to regulators including HHS, and began notifying affected individuals in October 2024, offering credit monitoring and identity protection services.


