Lexology
Description
DaVita, a United States and international operator of a large chain of outpatient dialysis clinics, distributed breach notification letters on August 5, 2025. The letter was sent to patients to inform them of a security event that was first detected on March 24, 2025, when an unauthorized individual gained access to some of DaVita’s network servers. The information of 915,952 patients was exposed and could have included names, birth dates, addresses, Social Security numbers (SSNs), Tax ID numbers, and images of checks. The exposed data also included medical conditions, treatments and test results. A ransomware group called Interlock claimed responsibility for the breach on April 25, 2025, saying they obtained 1.5 TB of data from DaVita’s network. Posted images of some of t
RadarOnline
The US Sun Health
Colorado Springs Gazette
CNN
Essentiallysports Football
KLCC
KPLC
Medscape
Raw Story