---
schema_version: "secwatch.filing_event.v1"
accession: "0001079973-26-000721"
form_type: "8-K"
ticker: "TOI"
cik: "0001799191"
company_name: "Oncology Institute, Inc."
filed_at: "2026-05-22T20:30:17+00:00"
generated_at: "2026-05-22T20:54:08.784767+00:00"
event_type: "cyber"
sentiment: "negative"
materiality_score: 0.7
confidence: "high"
source: SEC EDGAR
---

# Oncology Institute patient data accessed in Vendor cybersecurity incident; operations sustained

## Summary
- On May 20, 2026, Kroll notified TOI that its Vendor detected unauthorized access to TOI patient data systems.
- Incident previously disclosed voluntarily in November 2025; now confirmed patient information compromised.
- TOI states operations continued in all material respects since detection; offering credit monitoring to affected patients.
- Company believes incident also affected other healthcare providers; reserving rights against third parties.
- Evaluation ongoing; TOI currently believes no material impact on operations, financial condition, or quality of care.

## SEC filing metadata
- accession: 0001079973-26-000721
- form_type: 8-K
- ticker: TOI
- cik: 0001799191
- company_name: Oncology Institute, Inc.
- filed_at: 2026-05-22T20:30:17+00:00
- event_type: cyber
- sentiment: negative
- materiality_score: 0.7
- confidence: high
- sec_items: 1.05, 7.01, 9.01
- EDGAR index: https://www.sec.gov/Archives/edgar/data/1799191/000107997326000721/0001079973-26-000721-index.htm
- EDGAR primary document: https://www.sec.gov/Archives/edgar/data/1799191/000107997326000721/toi_8k.htm

## Machine-readable alternates
- HTML: https://secwatch.observer/filing/0001079973-26-000721
- JSON: https://secwatch.observer/filing/0001079973-26-000721.json
- Plain text: https://secwatch.observer/filing/0001079973-26-000721.txt

This AI-assisted summary is a reading aid. Review the linked SEC EDGAR filing before relying on any specific claim.