Groowe Groowe BETA / Newsroom
⏱ News is delayed by 15 minutes. Sign in for real-time access. Sign in

Form 8-K

sec.gov
DFPH TOI The company disclosed a cybersecurity incident affecting patient data. While operations and care quality are believed to be unaffected so far, the full impact is still being evaluated. The company is reserving rights against third parties. TOIIW This is a warrant associated with The Oncology Institute, Inc. The sentiment is neutral as it is directly tied to the company's performance and the cybersecurity incident disclosure impacts the underlying company.

8-K — Oncology Institute, Inc.

Accession: 0001079973-26-000721

Filed: 2026-05-22

Period: 2026-05-20

CIK: 0001799191

SIC: 8011 (SERVICES-OFFICES & CLINICS OF DOCTORS OF MEDICINE)

Item: <ITEMS>1.05

Item: Financial Statements and Exhibits

Documents

8-K — toi_8k.htm (Primary)

XML — IDEA: XBRL DOCUMENT (R1.htm)

XML — IDEA: XBRL DOCUMENT (R2.htm)

8-K — FORM 8-K

8-K (Primary)

Filename: toi_8k.htm · Sequence: 1

Current Report

false

0001799191

0001799191

2026-05-20

2026-05-20

0001799191

TOI:CommonStockParValue0.0001Member

2026-05-20

2026-05-20

0001799191

TOI:RedeemableWarrantsEachWholeWarrantExercisableForOneShareOfCommonStockEachAtExercisePriceOf11.50PerShareMember

2026-05-20

2026-05-20

iso4217:USD

xbrli:shares

iso4217:USD

xbrli:shares

UNITED STATES

SECURITIES AND EXCHANGE COMMISSION

Washington, D.C. 20549

___________________________________

Form 8-K

__________________________________________________________

CURRENT REPORT

Pursuant to Section 13 or 15(d)

of the Securities Exchange Act of 1934

Date of Report (Date of earliest event

reported)  May

20, 2026

___________________________________

THE ONCOLOGY INSTITUTE, INC.

(Exact name of registrant as specified in its charter)

___________________________________

Delaware

001-39248

84-3562323

(State or other jurisdiction

of incorporation)

(Commission File Number)

(I.R.S. Employer

Identification No.)

18000 Studebaker Road, Suite 800, Cerritos, CA

90703

(Address of principal executive offices)

(Zip Code)

Registrant’s telephone number, including area

code:  (562) 735-3226

(Former name or former address, if changed since last

report)

Check the appropriate box below if the Form 8-K

filing is intended to simultaneously satisfy the filing obligation of the registrant under any of the following provisions:

☐ Written

communication pursuant to Rule 425 under the Securities Act (17 CFR 230.425)

☐ Soliciting

material pursuant to Rule 14a-12 under the Exchange Act (17 CFR 240.14a-12)

☐ Pre-commencement

communication pursuant to Rule 14d-2(b) under the Exchange Act (17 CFR 240.14d-2(b))

☐ Pre-commencement

communication pursuant to Rule 13e-4(c) under the Exchange Act (17 CFR 240.13e-4(c))

Securities registered pursuant to Section 12(b)

of the Act:

Title of each class

Trading Symbol(s)

Name of each exchange on which registered

Common stock, par value $0.0001

TOI

The Nasdaq Stock Market LLC

Redeemable warrants, each whole warrant exercisable for one share of Common stock, each at an exercise price of $11.50 per share

TOIIW

The Nasdaq Stock Market LLC

Indicate by check mark whether the registrant is an

emerging growth company as defined in Rule 405 of the Securities Act of 1933 (17 CFR §230.405) or Rule 12b-2 of the Securities Exchange

Act of 1934 (17 CFR §240.12b-2).

Emerging growth company

¨

If an emerging growth company, indicate by check mark if the registrant

has elected not to use the extended transition period for complying with any new or revised financial accounting standards provided pursuant

to Section 13(a) of the Exchange Act. ☐.

Item 1.05 Material Cybersecurity Incidents.

The Oncology Institute, Inc. (the “Company”) is providing

this disclosure, as a follow-up to its voluntary disclosure in Item 7.01 of a Current Report on Form 8-K filed on November 6, 2025, regarding

a cybersecurity incident affecting a software service provider (“Vendor”) utilized by the Company. At the time of the prior

voluntary disclosure, the Vendor had indicated that investigation was still ongoing and it could not yet confirm any evidence that any

patient personal information was compromised as a result of this incident. However, on May 20, 2026, Kroll, who is the third-party administrator

for the Vendor, notified the Company that the Vendor had detected unauthorized access by a third party to certain information systems

of the Company, including systems affecting data of patients. The Company believes that the cybersecurity incident has affected various

other healthcare service providers, and the Vendor has set up a patient portal through which it intends to provide information and responses

to inquiries.

Because of the Company’s technology security and continuity plan,

the Company worked swiftly in response, and its operations have continued in all material respects since the detection of the incident.

The Company remains committed to protecting the healthcare and other personal information of its patients and will work with the Vendor

to offer credit monitoring and protection to all impacted patients.

The Company is reserving all rights with respect to potential claims

against relevant third parties or service providers. Although the Company’s investigation and assessment remain ongoing, as of the

date of this filing, the Company believes that the incident has not had a material impact on the Company’s operations, financial

systems, or its quality of care to its patients, and the Company is currently evaluating any other material impact, if any, including

on its financial condition or results of operations.

Cautionary Statement Regarding Forward-Looking Statements

This Current Report on Form 8-K contains statements about future events

and expectations which are “forward-looking statements” within the meaning of Sections 27A of the Securities Act of 1933,

as amended, and 21E of the Securities Exchange Act of 1934, as amended. Forward-looking statements can be identified by forward-looking

words such as “may,” “might,” “could,” “would,” “should,” “will,”

“anticipate,” “believe,” “plan,” “estimate,” “project,” “expect,”

“intend,” “seek,” “are encouraged,” and other similar expressions. Any statement contained in this

Current Report on Form 8-K that is not a statement of historical fact may be deemed to be a forward-looking statement. All forward-looking

statements involve risks, uncertainties and other factors that may cause actual results to differ materially from those expressed or implied

in the forward-looking statements. For example, all statements regarding the impact of the incident described above on the Company and

its operations, financial systems, or its financial condition, the scope of the investigation, expectations regarding the adequacy of

insurance, the Company’s plans, objectives, projections and expectations regarding the Company’s operations or financial condition,

and assumptions related thereto are all forward-looking statements. Factors that might cause the Company’s actual results to differ

materially from those anticipated in forward-looking statements include, but are not limited to, the Company’s ongoing assessment

of the impacts of the cybersecurity incident, including the Company’s potential discovery of additional information related to the

incident in connection with its investigation or otherwise; the Company’s expectations regarding its ability to contain and

remediate the cybersecurity incident; the impact of the cybersecurity incident on the Company’s relationships with patients,

employees, and governmental regulators; the legal, reputational, and financial risks resulting from the cybersecurity incident, including

as may arise from any exfiltrated data or any potential regulatory inquiries and/or litigation to which the Company may become subject

in connection with the incident; any further or still undetected cyber security incident; and remediation and other additional

costs that may be incurred by the Company in connection with the investigation and remediation of the incident. The forward-looking statements

speak only as of the date of this Current Report on Form 8-K. The Company undertakes no obligation to publicly update or revise any forward-looking

statements, whether as a result of new information, future events, or otherwise, except as required by applicable law.

Item 9.01.

Financial Statements and Exhibits.

(d)

Exhibits

Exhibit

No.

Description

104

Cover Page Interactive Data File (embedded within the Inline XBRL document).

SIGNATURE

Pursuant to the requirements of the Securities Exchange Act of

1934, the registrant has duly caused this report to be signed on its behalf by the undersigned hereunto duly authorized.

Dated: May 22, 2026

THE ONCOLOGY INSTITUTE, INC.

By:

/s/ Minh Merchant

Name:

Minh Merchant

Title:

Chief Legal Officer

XML — IDEA: XBRL DOCUMENT

XML

Filename: R1.htm · Sequence: 7

v3.26.1

Cover

May 20, 2026

Document Type

8-K

Amendment Flag

false

Document Period End Date

May 20, 2026

Entity File Number

001-39248

Entity Registrant Name

THE ONCOLOGY INSTITUTE, INC.

Entity Central Index Key

0001799191

Entity Tax Identification Number

84-3562323

Entity Incorporation, State or Country Code

DE

Entity Address, Address Line One

18000 Studebaker Road

Entity Address, Address Line Two

Suite 800

Entity Address, City or Town

Cerritos

Entity Address, State or Province

CA

Entity Address, Postal Zip Code

90703

City Area Code

(562)

Local Phone Number

735-3226

Written Communications

false

Soliciting Material

false

Pre-commencement Tender Offer

false

Pre-commencement Issuer Tender Offer

false

Entity Emerging Growth Company

false

Common Stock, par value $0.0001

Title of 12(b) Security

Common stock, par value $0.0001

Trading Symbol

TOI

Security Exchange Name

NASDAQ

Redeemable Warrants, each whole warrant exercisable for one share of common stock, each at an exercise price of $11.50 per share

Title of 12(b) Security

Redeemable warrants, each whole warrant exercisable for one share of Common stock, each at an exercise price of $11.50 per share

Trading Symbol

TOIIW

Security Exchange Name

NASDAQ

X

- Definition

Boolean flag that is true when the XBRL content amends previously-filed or accepted submission.

+ References

No definition available.

+ Details

Name:

dei_AmendmentFlag

Namespace Prefix:

dei_

Data Type:

xbrli:booleanItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Area code of city

+ References

No definition available.

+ Details

Name:

dei_CityAreaCode

Namespace Prefix:

dei_

Data Type:

xbrli:normalizedStringItemType

Balance Type:

na

Period Type:

duration

X

- Definition

For the EDGAR submission types of Form 8-K: the date of the report, the date of the earliest event reported; for the EDGAR submission types of Form N-1A: the filing date; for all other submission types: the end of the reporting or transition period. The format of the date is YYYY-MM-DD.

+ References

No definition available.

+ Details

Name:

dei_DocumentPeriodEndDate

Namespace Prefix:

dei_

Data Type:

xbrli:dateItemType

Balance Type:

na

Period Type:

duration

X

- Definition

The type of document being provided (such as 10-K, 10-Q, 485BPOS, etc). The document type is limited to the same value as the supporting SEC submission type, or the word 'Other'.

+ References

No definition available.

+ Details

Name:

dei_DocumentType

Namespace Prefix:

dei_

Data Type:

dei:submissionTypeItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Address Line 1 such as Attn, Building Name, Street Name

+ References

No definition available.

+ Details

Name:

dei_EntityAddressAddressLine1

Namespace Prefix:

dei_

Data Type:

xbrli:normalizedStringItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Address Line 2 such as Street or Suite number

+ References

No definition available.

+ Details

Name:

dei_EntityAddressAddressLine2

Namespace Prefix:

dei_

Data Type:

xbrli:normalizedStringItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Name of the City or Town

+ References

No definition available.

+ Details

Name:

dei_EntityAddressCityOrTown

Namespace Prefix:

dei_

Data Type:

xbrli:normalizedStringItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Code for the postal or zip code

+ References

No definition available.

+ Details

Name:

dei_EntityAddressPostalZipCode

Namespace Prefix:

dei_

Data Type:

xbrli:normalizedStringItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Name of the state or province.

+ References

No definition available.

+ Details

Name:

dei_EntityAddressStateOrProvince

Namespace Prefix:

dei_

Data Type:

dei:stateOrProvinceItemType

Balance Type:

na

Period Type:

duration

X

- Definition

A unique 10-digit SEC-issued value to identify entities that have filed disclosures with the SEC. It is commonly abbreviated as CIK.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Exchange Act

-Number 240

-Section 12

-Subsection b-2

+ Details

Name:

dei_EntityCentralIndexKey

Namespace Prefix:

dei_

Data Type:

dei:centralIndexKeyItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Indicate if registrant meets the emerging growth company criteria.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Exchange Act

-Number 240

-Section 12

-Subsection b-2

+ Details

Name:

dei_EntityEmergingGrowthCompany

Namespace Prefix:

dei_

Data Type:

xbrli:booleanItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Commission file number. The field allows up to 17 characters. The prefix may contain 1-3 digits, the sequence number may contain 1-8 digits, the optional suffix may contain 1-4 characters, and the fields are separated with a hyphen.

+ References

No definition available.

+ Details

Name:

dei_EntityFileNumber

Namespace Prefix:

dei_

Data Type:

dei:fileNumberItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Two-character EDGAR code representing the state or country of incorporation.

+ References

No definition available.

+ Details

Name:

dei_EntityIncorporationStateCountryCode

Namespace Prefix:

dei_

Data Type:

dei:edgarStateCountryItemType

Balance Type:

na

Period Type:

duration

X

- Definition

The exact name of the entity filing the report as specified in its charter, which is required by forms filed with the SEC.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Exchange Act

-Number 240

-Section 12

-Subsection b-2

+ Details

Name:

dei_EntityRegistrantName

Namespace Prefix:

dei_

Data Type:

xbrli:normalizedStringItemType

Balance Type:

na

Period Type:

duration

X

- Definition

The Tax Identification Number (TIN), also known as an Employer Identification Number (EIN), is a unique 9-digit value assigned by the IRS.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Exchange Act

-Number 240

-Section 12

-Subsection b-2

+ Details

Name:

dei_EntityTaxIdentificationNumber

Namespace Prefix:

dei_

Data Type:

dei:employerIdItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Local phone number for entity.

+ References

No definition available.

+ Details

Name:

dei_LocalPhoneNumber

Namespace Prefix:

dei_

Data Type:

xbrli:normalizedStringItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Boolean flag that is true when the Form 8-K filing is intended to satisfy the filing obligation of the registrant as pre-commencement communications pursuant to Rule 13e-4(c) under the Exchange Act.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Exchange Act

-Number 240

-Section 13e

-Subsection 4c

+ Details

Name:

dei_PreCommencementIssuerTenderOffer

Namespace Prefix:

dei_

Data Type:

xbrli:booleanItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Boolean flag that is true when the Form 8-K filing is intended to satisfy the filing obligation of the registrant as pre-commencement communications pursuant to Rule 14d-2(b) under the Exchange Act.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Exchange Act

-Number 240

-Section 14d

-Subsection 2b

+ Details

Name:

dei_PreCommencementTenderOffer

Namespace Prefix:

dei_

Data Type:

xbrli:booleanItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Title of a 12(b) registered security.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Exchange Act

-Number 240

-Section 12

-Subsection b

+ Details

Name:

dei_Security12bTitle

Namespace Prefix:

dei_

Data Type:

dei:securityTitleItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Name of the Exchange on which a security is registered.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Exchange Act

-Number 240

-Section 12

-Subsection d1-1

+ Details

Name:

dei_SecurityExchangeName

Namespace Prefix:

dei_

Data Type:

dei:edgarExchangeCodeItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Boolean flag that is true when the Form 8-K filing is intended to satisfy the filing obligation of the registrant as soliciting material pursuant to Rule 14a-12 under the Exchange Act.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Exchange Act

-Number 240

-Section 14a

-Subsection 12

+ Details

Name:

dei_SolicitingMaterial

Namespace Prefix:

dei_

Data Type:

xbrli:booleanItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Trading symbol of an instrument as listed on an exchange.

+ References

No definition available.

+ Details

Name:

dei_TradingSymbol

Namespace Prefix:

dei_

Data Type:

dei:tradingSymbolItemType

Balance Type:

na

Period Type:

duration

X

- Definition

Boolean flag that is true when the Form 8-K filing is intended to satisfy the filing obligation of the registrant as written communications pursuant to Rule 425 under the Securities Act.

+ References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Securities Act

-Number 230

-Section 425

+ Details

Name:

dei_WrittenCommunications

Namespace Prefix:

dei_

Data Type:

xbrli:booleanItemType

Balance Type:

na

Period Type:

duration

X

- Details

Name:

us-gaap_StatementClassOfStockAxis=TOI_CommonStockParValue0.0001Member

Namespace Prefix:

Data Type:

na

Balance Type:

Period Type:

X

- Details

Name:

us-gaap_StatementClassOfStockAxis=TOI_RedeemableWarrantsEachWholeWarrantExercisableForOneShareOfCommonStockEachAtExercisePriceOf11.50PerShareMember

Namespace Prefix:

Data Type:

na

Balance Type:

Period Type:

XML — IDEA: XBRL DOCUMENT

XML

Filename: R2.htm · Sequence: 8

v3.26.1

Material Cybersecurity Incident Disclosure

May 20, 2026

Material Cybersecurity Incident [Abstract]

Material Cybersecurity Incident Nature [Text Block]

on November 6, 2025, regarding

a cybersecurity incident affecting a software service provider (“Vendor”) utilized by the Company. At the time of the prior

voluntary disclosure, the Vendor had indicated that investigation was still ongoing and it could not yet confirm any evidence that any

patient personal information was compromised as a result of this incident.

Material Cybersecurity Incident Scope [Text Block]

However, on May 20, 2026, Kroll, who is the third-party administrator

for the Vendor, notified the Company that the Vendor had detected unauthorized access by a third party to certain information systems

of the Company, including systems affecting data of patients. The Company believes that the cybersecurity incident has affected various

other healthcare service providers, and the Vendor has set up a patient portal through which it intends to provide information and responses

to inquiries.

Material Cybersecurity Incident Timing [Text Block]

Because of the Company’s technology security and continuity plan,

the Company worked swiftly in response, and its operations have continued in all material respects since the detection of the incident.

The Company remains committed to protecting the healthcare and other personal information of its patients and will work with the Vendor

to offer credit monitoring and protection to all impacted patients.

Material Cybersecurity Incident Material Impact or Reasonably Likely Material Impact [Text Block]

The Company is reserving all rights with respect to potential claims

against relevant third parties or service providers. Although the Company’s investigation and assessment remain ongoing, as of the

date of this filing, the Company believes that the incident has not had a material impact on the Company’s operations, financial

systems, or its quality of care to its patients, and the Company is currently evaluating any other material impact, if any, including

on its financial condition or results of operations.

Material Cybersecurity Incident Information Not Available or Undetermined [Text Block]

on May 20, 2026, Kroll, who is the third-party administrator

for the Vendor, notified the Company that the Vendor had detected unauthorized access by a third party to certain information systems

of the Company, including systems affecting data of patients.

X

- References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 8-K

-Section 1.05

Reference 2: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 6-K

-Section General Instruction

-Subsection B

+ Details

Name:

cyd_MaterialCybersecurityIncidentAbstract

Namespace Prefix:

cyd_

Data Type:

i:stringItemType

Balance Type:

na

Period Type:

duration

X

- References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 8-K

-Section 1.05

-Subsection Instruction

-Paragraph 2

Reference 2: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 6-K

-Section General Instruction

-Subsection B

+ Details

Name:

cyd_MaterialCybersecurityIncidentInformationNotAvailableOrUndeterminedTextBlock

Namespace Prefix:

cyd_

Data Type:

dtr-types:textBlockItemType

Balance Type:

na

Period Type:

duration

X

- References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 8-K

-Section 1.05

-Subsection a

Reference 2: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 6-K

-Section General Instruction

-Subsection B

+ Details

Name:

cyd_MaterialCybersecurityIncidentMaterialImpactOrReasonablyLikelyMaterialImpactTextBlock

Namespace Prefix:

cyd_

Data Type:

dtr-types:textBlockItemType

Balance Type:

na

Period Type:

duration

X

- References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 8-K

-Section 1.05

-Subsection a

Reference 2: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 6-K

-Section General Instruction

-Subsection B

+ Details

Name:

cyd_MaterialCybersecurityIncidentNatureTextBlock

Namespace Prefix:

cyd_

Data Type:

dtr-types:textBlockItemType

Balance Type:

na

Period Type:

duration

X

- References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 8-K

-Section 1.05

-Subsection a

Reference 2: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 6-K

-Section General Instruction

-Subsection B

+ Details

Name:

cyd_MaterialCybersecurityIncidentScopeTextBlock

Namespace Prefix:

cyd_

Data Type:

dtr-types:textBlockItemType

Balance Type:

na

Period Type:

duration

X

- References

Reference 1: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 8-K

-Section 1.05

-Subsection a

Reference 2: http://www.xbrl.org/2003/role/presentationRef

-Publisher SEC

-Name Form 6-K

-Section General Instruction

-Subsection B

+ Details

Name:

cyd_MaterialCybersecurityIncidentTimingTextBlock

Namespace Prefix:

cyd_

Data Type:

dtr-types:textBlockItemType

Balance Type:

na

Period Type:

duration