A ransomware attack on the University of Hawaii's Cancer Center in August 2025 has resulted in the theft of sensitive data belonging to approximately 1.2 million individuals. The breach, which targeted the Epidemiology Division, highlights the growing threat of cyberattacks on healthcare institutions. The University of Hawaii has confirmed the incident, which is believed to have been perpetrated by a ransomware gang. The stolen data likely includes personally identifiable information, such as names, addresses, and medical records, which could be used for identity theft, phishing, or other malicious activities. The attack underscores the need for robust cybersecurity measures in the healthcare sector, particularly in research institutions that handle sensitive patient data. The incident is a stark reminder of the devastating consequences of a successful ransomware attack, which can have long-lasting effects on individuals and organizations alike1. The University of Hawaii's experience serves as a warning to other healthcare institutions to prioritize cybersecurity and implement effective measures to prevent similar breaches. So what matters most to cybersecurity practitioners is that this incident demonstrates the critical importance of proactive cybersecurity measures in protecting sensitive data and preventing devastating breaches.