Suche
Data breach at SimonMed: 1.27 million patients affected!
A cyberattack on SimonMed Imaging compromises 1.27 million patients' data, including sensitive information.
Data breach at SimonMed: 1.27 million patients affected!
On October 17, 2025, the US healthcare company SimonMed Imaging reported a serious data breach affecting over 1.27 million patients. This incident is the result of a cyberattack that compromised sensitive health and personal information. A total of 1,275,669 people were affected by the breach, according to a statement to the Maine Attorney General's Office.
The problems first emerged in January 2023 when unauthorized activity was detected on the computer systems. The resulting investigation confirmed that attackers had access to and potentially exfiltrated data before the incident could be contained. The earliest findings suggest that a wide range of sensitive information could be affected.
Affected Information
Potentially compromised data includes:
- Namen
- Adressen
- Geburtsdaten
- Dienstleistungsdaten
- Namen der Anbieter
- Medizinische Akten- und Patientennummern
- Medizinische Bedingungen, Diagnosen und Behandlungen
- Medikamente
- Informationen zur Krankenversicherung
- Führerscheinnummern
Although SimonMed did not confirm the identity of the attackers and the possible use of ransomware, the Medusa ransomware group claimed responsibility for the cyberattack. They claimed to have stolen more than 212 gigabytes of data and demanded a $1 million ransom to be paid by February 21, 2025. At least one class action lawsuit has already been filed in response to this incident.
Responses and security measures
Given the severity of the incident, SimonMed has significantly strengthened its cybersecurity measures. Newly implemented measures include improved multi-factor authentication, password resets and endpoint monitoring. In addition, third-party providers' direct access to the company's systems was removed. Additional security measures are in the works during the ongoing investigation to prevent future attacks.
The incident highlights the increasing vulnerability of healthcare data and poses significant cybersecurity challenges for the industry. SimonMed-like incidents add to concerns about protecting sensitive information in healthcare organizations and create an urgent need for a comprehensive review of security protocols. More details on the situation are expected as the investigation continues.
For more information about this incident, please visit Daily Hodl.