Washington, USA – August 2025:
U.S.-based kidney care provider DaVita has confirmed a major ransomware breach that compromised the personal and medical information of nearly one million patients across the country. The cyberattack, carried out by the Interlock ransomware group, took place between March 24 and April 12, 2025.

According to DaVita, the stolen data includes names, dates of birth, Social Security numbers, driver’s license and insurance IDs, financial account details, and in some cases, clinical information. More than 13,000 residents in Washington state were directly affected.

In an official statement, DaVita assured that it immediately launched an investigation, engaged third-party cybersecurity experts, and notified law enforcement. Impacted individuals have been offered free identity theft protection and credit monitoring through Experian IdentityWorks.

Cybersecurity analysts warn that the healthcare sector remains a prime target for ransomware operators due to the high value of medical data on the dark web. The incident reinforces the urgent need for robust network monitoring, staff awareness, and strict data encryption across healthcare organizations.