Call-On-Doc hack exposed data from 1.1 million patients, suit says

[swidup]

https://today.westlaw.com/Document/If087758dfd4711f094379c4235ce3030/View/FullText.html

"A proposed class action accuses telemedicine company Call-On-Doc Inc. of failing to protect the personal and health information of more than 1.1 million patients from a hacker using the moniker "iProfessor."

Freifeld v. Call-On-Doc Inc., No. 26-cv-200, complaint filed (N.D. Tex. Jan. 26, 2026).

The lawsuit, filed Jan. 26 in the U.S. District Court for the Northern District of Texas, says the company's lax security allowed iProfessor to publish detailed patient profiles on a hacking forum in December 2025.

The compromised data included personally identifiable information such as names, phone numbers, addresses, email addresses and birthdates, the complaint says. It also exposed protected health information including patients' medical conditions, prescriptions and services rendered.

Call-On-Doc is a Texas-based telemedicine company that provides online and mobile-based health care consultations, prescriptions and related medical services to patients nationwide, according to the complaint.

David Freifeld, a former patient from Illinois, says in his complaint that Call-On-Doc has not issued any public notification or disclosure to affected individuals about the breach. This failure has left patients "to speculate as to where their PII ended up, who has used it, and for what potentially nefarious purposes," the complaint says."

naics 621111