A data breach at OpenLoop Health in January 2026 has compromised the personal information of 716,000 individuals who used the company's telehealth services. The breach, which was discovered on January 7, 2026, allowed threat actors to exfiltrate user data from the company's systems, affecting hundreds of thousands of patients. The incident was reported to authorities in March, but the full scope of the breach was only recently determined. The exposed data poses a significant risk to the affected individuals, who may be vulnerable to identity theft and other cyber threats. OpenLoop Health's confirmation of the breach highlights the need for robust security measures in the telehealth industry, particularly as the use of online health services continues to grow1. The breach serves as a reminder to practitioners of the importance of prioritizing data protection and implementing effective security protocols to prevent similar incidents.