Ransomware at DaVita exposes patient data
- Cyberpeace Tech
- Aug 29
- 2 min read
Cyberattacks on the healthcare sector continue to rise, as confirmed by a recent case: DaVita, one of the leading dialysis companies, acknowledged that more than 2.6 million patients were affected by a massive data breach carried out by the Interlock ransomware group.
The attack began on March 24, when the criminals managed to infiltrate the company's network and remain there for almost three weeks without being detected. It was not until April 12 that the intrusion was identified, at which point those affected were notified.
During that time, the attackers stole sensitive information related to personal data, medical results, and tax identification numbers.
Ransomware at DaVita: what happened
According to the company itself, the cybercriminals managed to encrypt part of its systems, disrupting operations and compromising nearly 700,000 files containing patient health, medical insurance, and financial data.
After the incident, the attackers leaked some of the stolen data on the dark web, claiming that they had stolen around 1.5 terabytes of information.
Although DaVita has not publicly disclosed whether it received a ransom demand, the Interlock gang claimed responsibility for the attack in late April and published evidence on its clandestine portals. The company subsequently verified that at least some of the leaked files were authentic.
A cautionary tale for Mexico
This incident highlights how the healthcare sector is a priority target for ransomware gangs worldwide. In Mexico, where the healthcare system handles large volumes of sensitive data, attacks such as the one suffered by DaVita serve as an urgent reminder: strengthening cybersecurity in hospitals and clinics is essential to protect both patients and institutions.
The Interlock operation, active since 2024, has targeted healthcare organizations, universities, and large corporations, demonstrating its ability to adapt and expand its reach. Mexico is not immune to these types of threats, and cases such as DaVita's should serve as a benchmark for prioritizing investment in secure digital infrastructure.
The breach suffered by DaVita shows that no sector is immune to the risks of ransomware, and that the most sensitive information (such as health-related data) can become a priority target for cybercriminals.
In Mexico, strengthening cybersecurity in hospitals, clinics, and healthcare centers is no longer optional: it is an urgent necessity to protect millions of patients. If you want to stay up to date with the most relevant cybersecurity news and learn how to protect yourself from these threats, follow us on our social media channels.
Comments