In early 2026, the former Nuance Communications IT worker responsible for the Geisinger Health patient data breach (documented separately) faced additional federal charges. The original breach involved the employee accessing Geisinger patient data after their employment at Nuance (a Microsoft subsidiary providing healthcare IT services including clinical documentation solutions) was terminated. The additional charges related to the scope of unauthorized access and data theft. The case highlights the critical importance of immediately revoking third-party vendor employee access upon termination.