Hackers Hit Healthcare: DaVita Breach Exposes Over 900,000 Patients

Gigabit Systems

August 6, 2025

•

20 min read

Share this post

Hackers Hit Healthcare: DaVita Breach Exposes Over 900,000 Patients

A major ransomware attack has rocked the healthcare sector yet again — this time targeting DaVita, one of the largest kidney dialysis providers in the U.S.

What Happened?

Hackers gained unauthorized access to DaVita’s servers in late March 2025, breaching primarily its lab infrastructure. While DaVita discovered the intrusion in mid-April, a staggering amount of sensitive data had already been exfiltrated.

The Interlock ransomware group has claimed responsibility, boasting it stole 1.5TB of data — including more than 683,000 files. Comparitech reports that over 900,000 individuals may be affected.

What Was Stolen?

DaVita’s investigation reveals that the stolen data varies from person to person, but can include:

Full names and addresses
Dates of birth and Social Security numbers
Health insurance and medical treatment details
Tax identification numbers
Images of checks sent to DaVita

This isn’t just a data breach — it’s a catastrophic violation of trust and privacy, particularly damaging because it involves healthcare information, which is among the most difficult data to recover from once compromised.

Why This Matters

Cybercriminals continue to target healthcare providers for one reason: the data is rich, sensitive, and highly profitable on the dark web. And unlike a stolen credit card, medical records and SSNs can’t simply be reissued.

This breach adds DaVita to a growing list of healthcare organizations that have faced ransomware attacks in recent years — highlighting the urgent need for layered cybersecurity defenses and employee awareness training in critical infrastructure sectors.

What To Do If You’re Affected

DaVita has started mailing data breach notification letters. If you or a loved one received one, take these actions immediately:

Freeze your credit with all three major bureaus
Sign up for identity theft protection (DaVita may offer this for free)
Monitor medical billing statements for signs of fraud
Report suspicious activity to the FTC’s identity theft site: identitytheft.gov

70% of all cyber attacks target small businesses. I can help protect yours.

Share this post

See some more of our most recent posts...

Technology

Cybersecurity

Must-Read

News

Hackers Hit Healthcare: DaVita Breach Exposes Over 900,000 Patients

August 6, 2025

•

20 min read

Hackers Hit Healthcare: DaVita Breach Exposes Over 900,000 Patients

A major ransomware attack has rocked the healthcare sector yet again — this time targeting DaVita, one of the largest kidney dialysis providers in the U.S.

What Happened?

The Interlock ransomware group has claimed responsibility, boasting it stole 1.5TB of data — including more than 683,000 files. Comparitech reports that over 900,000 individuals may be affected.

What Was Stolen?

DaVita’s investigation reveals that the stolen data varies from person to person, but can include:

Full names and addresses
Dates of birth and Social Security numbers
Health insurance and medical treatment details
Tax identification numbers
Images of checks sent to DaVita

Why This Matters

What To Do If You’re Affected

DaVita has started mailing data breach notification letters. If you or a loved one received one, take these actions immediately:

Freeze your credit with all three major bureaus
Sign up for identity theft protection (DaVita may offer this for free)
Monitor medical billing statements for signs of fraud
Report suspicious activity to the FTC’s identity theft site: identitytheft.gov

70% of all cyber attacks target small businesses. I can help protect yours.

Technology

Cybersecurity

Must-Read

Tips

Too Late to Insure a Burning House

July 30, 2025

•

20 min read

🔥 Too Late to Insure a Burning House

“Can you do cybersecurity… without the ongoing stuff?”

A client once asked us that. It’s like saying: “I want insurance—just when my house is on fire.”

Why Cybersecurity Can’t Be a One-Time Fix

Cybersecurity isn’t a fire extinguisher. It’s a sprinkler system.

Hackers don’t wait for your annual checkup—they look for cracks daily.

Yet many small businesses, law firms, schools, and even healthcare practices still treat cybersecurity as a checkbox:

A one-time antivirus install
A firewall from five years ago
“We’re too small to be a target”

Reality check: 70% of cyber attacks target small businesses. Most never see it coming until it’s too late.

What “Ongoing” Really Means

At Gigabit Systems, ongoing doesn’t mean “endless bills.”

It means:

Real-time monitoring of threats
Patching vulnerabilities as they emerge
Simulated phishing tests to train staff
Backups that actually work when disaster strikes

It’s not overkill. It’s survival.

If you wouldn’t drop your health insurance just because you feel okay this month, why gamble with your business?

Think Like a Hacker

Hackers don’t care if your firm has 5 users or 500.

They just want:

One stolen email login
One unpatched device
One distracted employee

Ongoing cybersecurity isn’t a luxury.

It’s the difference between a near-miss and a headline.

70% of all cyber attacks target small businesses, I can help protect yours.

Must-Read

Technology

Science

Cybersecurity

News

Even spy agencies are getting hacked.

July 30, 2025

•

20 min read

Even spy agencies are getting hacked.

Hackers have breached a top-secret portal used by the CIA and other intelligence agencies to manage sensitive contracts, raising serious alarms across the national security landscape. The compromised site, the Acquisition Research Center, is run by the National Reconnaissance Office (NRO), which oversees the U.S. spy satellite program.

Sources familiar with the breach say data from Digital Hammer, a classified CIA initiative, was exposed — along with proprietary intelligence technologies and personal information submitted to support covert operations. The full extent of the breach is still unknown, but insiders suggest the compromise could stretch into programs tied to Space Force surveillance and missile defense efforts, including the Golden Dome.

This breach comes on the heels of another sobering disclosure: Chinese state-backed hackers accessed systems inside the Department of Energy’s National Nuclear Security Administration, the central hub of the U.S. nuclear arsenal.

This isn’t just a federal problem. It’s a loud and clear warning for every business with sensitive contracts, vendor portals, or IP. If cybercriminals can infiltrate intelligence networks and nuclear agencies, what’s protecting your organization?

Supply chain targeting is one of the fastest-growing forms of cyberattack. Hackers don’t always go after the fortress — they go after the vendor with a side door. That could be your company, especially if you provide services to schools, law firms, healthcare clinics, or government contractors.

Cybersecurity is no longer about perimeter firewalls or reactive fixes. You need real-time monitoring, hardened endpoint security, and a zero-trust model that assumes every login could be a threat.

The breach of America’s most secretive platforms shows how high the stakes are. The question isn’t if your business will be tested — it’s whether your defenses are ready when it happens.

70% of all cyber attacks target small businesses. I can help protect yours.