OpenLoop Health, a telehealth infrastructure platform, confirmed unauthorized access affecting approximately 716,000 individuals in January 2026. This is a third-party risk and HIPAA compliance event — healthcare operators whose patient data flows through OpenLoop may have independent notification obligations and regulatory exposure.