Interlock Ransomware Say It Stole 1.5tb Of Davita Healthcare Data

Patients receiving captious kidney dialysis curen from DaVita, a awesome healthcare provider, are now facing nan imaginable vulnerability of their delicate information. A group of cyber criminals from nan Interlock ransomware has claimed work for nan cyberattack connected nan institution and has begun posting what they opportunity is stolen diligent information connected their acheronian web leak site.

This improvement comes conscionable 2 weeks aft DaVita, which operates a immense web of complete 2,500 dialysis centres crossed nan United States and hundreds much successful 13 different countries, informed nan US Securities and Exchange Commission astir nan ransomware attack, aft which nan company’s stock fell by 3%, arsenic reported by Investopedia.

As Hackread.com previously reported, nan attack, which occurred astir April 12th, progressive nan encryption of parts of DaVita’s machine systems, causing disruptions to their soul operations. At nan clip of their first disclosure, DaVita stated they were implementing contingency plans to guarantee uninterrupted diligent care, a important work for individuals pinch end-stage renal illness who require dialysis aggregate times a week to survive.

Now, Interlock, a comparatively new ransomware group that began listing victims connected its leak tract successful October 2024, is claiming to person stolen a monolithic 1.51 terabytes of information from DaVita. They person already posted samples of this alleged stolen information, raising superior concerns astir nan privateness of DaVita’s patients.

Screenshot from nan Interlock Ransomware’s acheronian web leak tract (Image credit: Hackread.com)

DaVita has acknowledged nan acheronian web posting and stated they are successful nan process of thoroughly reviewing nan information involved. “We are disappointed successful these actions against nan healthcare organization and will proceed to stock adjuvant accusation pinch our vendors and partners to raise consciousness connected really to take sides against these attacks successful nan future,” their spokesperson stated.

The imaginable standard of nan breach is important considering that DaVita served astir 281,100 patients worldwide done its extended web of complete 3,000 outpatient dialysis centres successful 2024.

Cybersecurity experts, including Paul Bischoff from Comparitech, statement that Interlock has been linked to a increasing number of confirmed attacks since its emergence. It is worthy noting that this group has antecedently claimed work for a cyberattack connected Texas Tech University Health Sciences Centre, an incident that reportedly compromised nan aesculapian accusation of complete 530,000 individuals.

This way grounds emphasises nan imaginable severity of nan existent business for DaVita and its patients. The afloat scope of nan compromised information and nan imaginable consequences for affected individuals are yet to beryllium wished arsenic DaVita continues its investigation.

Paul Bischoff, Consumer Privacy Advocate astatine Comparitech, commented connected nan latest development, stating, “Interlock began listing victims successful October 2024, demanding ransom for decrypting systems and deleting stolen data. We’ve tracked 13 confirmed and 13 unconfirmed attacks by nan group and successful 2025 alone, location person been 17 confirmed ransomware attacks connected US healthcare companies, pinch 80 much unconfirmed.”

“As seen pinch DaVita, these attacks tin severely disrupt diligent attraction and lead to semipermanent information privateness issues. In 2024, astir 25.7 cardinal records were breached crossed 160 healthcare ransomware incidents,” Paul revealed.