Fairfield Memorial Hospital
July 2, 2024
•[ ransomware, leak, malware ]
The LockBit ransomware gang claims to have breached Fairfield Memorial Hospital in Illinois and adds it to their Tor leak site.
Wayne Memorial Hospital
July 1, 2024
•[ ransomware, malware, healthcare ]
The Monti ransomware gang claims to have breached Wayne Memorial Hospital in Pennsylvania and adds it to their Tor leak site.
Florida Community Health Centers
July 1, 2024
•[ ransomware, malware, healthcare ]
Florida Community Health Centers (FCHC) discloses to have suffered a ransomware attack affecting nearly 300,000 people.
Bloom Health Centers
June 28, 2024
•[ hack, phishing, healthcare ]
Psych Associates of Maryland LLC d/b/a Bloom Health Centers ("Bloom Health") discloses a security breach after the compromise of an employee's email.
Pediatric Urology Associates
June 28, 2024
•[ ransomware, malware, healthcare ]
Pediatric Urology Associates is allegedly hit with a dAn0n ransomware attack.
University Hospital Centre in Zagreb, a.k.a. KBC Zagreb
June 27, 2024
•[ ransomware, malware, healthcare ]
The LockBit ransomware gang claims responsibility for a cyberattack on Croatias largest hospital, which forces it to shut down IT systems for a day.
Palomar Health Medical Group
June 26, 2024
•[ ransomware, malware, healthcare ]
Palomar Health Medical Groups (PHMG) phones and computer systems are still down after suspicious activities nearly two months ago.
The Ambulatory Surgery Center of Westchester
June 26, 2024
•[ social, phishing, healthcare ]
The Mount Kisco Surgery Center LLC d/b/a The Ambulatory Surgery Center of Westchester ("ASCW") discloses a security breach after the compromise of an employee's email.
Humboldt Independent Practice Association (IPA)
June 26, 2024
•[ data leak, healthcare, unauthorized access ]
Between June 26 and July 1 2024, an unauthorized actor accessed a Humboldt Independent Practice Association email account containing protected health information. Exposed data may include patient names, contact details, birth dates, diagnoses, insurance, and identification numbers. No evidence of encryption or confirmed data exfiltration has been reported. The breach was disclosed to HHS in November 2024 and publicly announced on February 15 2025.
South Africa’s National Health Laboratory Service
June 25, 2024
•[ ransomware, malware, healthcare ]
South Africas National Health Laboratory Service (NHLS) confirms to be dealing with a ransomware attack.
Pinnacle Orthopaedics & Sports Medicine Specialists
June 21, 2024
•[ ransomware, malware, healthcare ]
Pinnacle Orthopaedics & Sports Medicine Specialists is hit with an INC ransomware attack.
Acadian Ambulance
June 21, 2024
•[ ransomware, malware, healthcare ]
Acadian Ambulance is hit with a Daixin ransomware attack. The threat actors claim to have stolen 10 million records.
Maxicare
June 16, 2024
•[ leak, healthcare ]
The health maintenance organization (HMO) Maxicare reports a data breach affecting the personal information of some 13,000 members.
U.S. Dermatology Partners
June 16, 2024
•[ ransomware, malware, healthcare ]
U.S. Dermatology Partners has allegedly 1.8 TB of files leaked by the Black Basta ransomware operation.
Consulting Radiologists
June 14, 2024
•[ hack, healthcare ]
Consulting Radiologists notifies more than 500,000 individuals that their sensitive information was accessed and potentially acquired by threat actors earlier this year.
Gramercy Surgery Center
June 14, 2024
•[ leak, healthcare ]
The threat actor(s) known as Everest Team add Gramercy Surgery Center (Gramercy) to its leak site, and claims to have acquired more than 460 GB of files.
Alabama Cardiology Group
June 6, 2024
•[ hack, healthcare ]
Alabama Cardiology Group notifies nearly 281,000 current and past patients, physicians and employees that threat actors stole their sensitive information.
Synnovis
June 4, 2024
•[ ransomware, malware, healthcare ]
A Qilin ransomware attack affecting pathology and diagnostic services provider Synnovis impacts healthcare services at multiple major NHS hospitals in London.
Special Health Resources
June 2, 2024
•[ ransomware, malware, healthcare ]
Special Health Resources suffers a BlackSuit ransomware attack.
Maryhaven, Inc.
May 30, 2024
•[ data leak, healthcare, unauthorized access ]
Maryhaven, a behavioral health and addiction treatment provider in Ohio, detected unauthorized access to its systems on June 1 2024. An unknown actor accessed and exfiltrated patient and employee PHI/PII data (~7,000 records). No encryption or operational disruption occurred. Disclosure issued April 11 2025 through Cyberscout/TransUnion.
