← Back to incidents

Incident · Unknown

The Oncology Institute, Inc. · TOI

Health CareUSAIncident November 3, 2025Filed November 6, 2025
Impact score
Business continuity
Partial
Insurance involved
Not disclosed
Filing
8-K · 7.01

Breach taxonomy

UnknownSystem OutageSupply ChainRevenue ProcessBiz Interruption

Summary

The Oncology Institute disclosed that a cybersecurity incident at a third-party IT software provider was causing potential delays in the company's fee-for-service collections in its billing operations. The provider had not identified evidence of patient personal information being compromised. The company collaborated with the software provider to mitigate effects and restore normal billing operations. The incident was determined to be immaterial. Filed under Item 7.01; company determined the incident is not material.

Tagging rationale

ThreatUnknown

Filing does not attribute the incident to a specific actor → UNKNOWN.

MethodsSystem OutageSupply Chain

A cybersecurity incident at a third-party IT software provider disrupted system operations; the breach originated at a supply chain vendor → SYSTEM-OUTAGE + SUPPLY-CHAIN.

AssetsRevenue Process

The incident affected the company's fee-for-service billing and collections process, which generates revenue → REVENUE-PROCESS.

EffectsBiz Interruption

Filing states the incident was expected to result in a brief delay in the collection of fee-for-service claims, disrupting normal billing operations → BIZ-INTERRUPTION.

Business continuityPartial

Filing states the company is collaborating with the provider to restore normal billing operations; partial disruption with active remediation ongoing → Partial.

Impact

Brief immaterial delay in fee-for-service billing collections at a small oncology company; no data compromised, no operational shutdown → score 1.

InsuranceNot disclosed

Filing makes no mention of insurance → null.

Read the original SEC filing excerpt
On November 3, 2025, The Oncology Institute, Inc. (the "Company") determined that a cybersecurity incident affecting an information technology software provider would potentially delay fee-for-service collections. Based on the Company's current assessment, this incident is expected to result in a brief immaterial delay in the collection of some claims in the Company's fee-for-service segment. To date, the software provider has not indicated to the Company that there is any evidence that any patient personal information was compromised as a result of this incident, and an investigation remains ongoing. The Company is collaborating closely with the software provider to mitigate the effects and restore normal billing operations as quickly as possible.
View SEC filingBack to database

More in Health Care

Unknown · March 16, 2026

CareCloud, Inc.

On March 16, 2026, CareCloud experienced a network disruption in its CareCloud Health division caused by an unauthorized third party that te

Unknown · March 11, 2026

Stryker Corporation

On March 11, 2026, Stryker Corporation identified a cybersecurity incident affecting its Entra ID/Active Directory environment, servers, and

Unknown · August 8, 2025

Inotiv, Inc.

On August 8, 2025, Inotiv, Inc. identified a cybersecurity incident in which a threat actor gained unauthorized access to and encrypted cert

Unknown · June 5, 2025

Surmodics, Inc.

On June 5, 2025, Surmodics, Inc. discovered that a threat actor had gained unauthorized access to certain of its IT systems, rendering certa