Florida Lung, Asthma and Sleep Specialists hit by ransomware, exposing patient data
Learn More
Florida Lung, Asthma and Sleep Specialists (FLASS) were hit by a ransomware attack claimed by the Rhysida cybercriminal group that may have compromised patient personal and medical information. FLASS operates five medical offices across Central Florida, including locations in Orlando, Winter Garden, Lake Nona, Poinciana, and Kissimmee.
The attack was discovered on May 21, 2025. The Rhysida ransomware group posted details of the attack on their dark web site and demanded six bitcoins, valued at approximately $650,000, in exchange for not releasing the stolen data. Initially in May 2025, FLASS told investigators that it had no knowledge of compromised patient information but confirmed that it had reported the attack to the FBI.
The claimed stolen data by the attackers is not the same as what FLASS
Attackers claim theft of:
- Social Security numbers
- Medical records
- Passport information
Per the FLASS official disclosure claims exposure of :
- Names
- Dates of birth
- Contact information
- "Limited" medical and billing information
The number of affected individuals has not been disclosed.
Patients of FLASS who may have been affected by this breach are advised to monitor their accounts for any signs of identity theft or fraudulent activity. The organization has disclosed whether it is providing credit monitoring services or other identity protection resources to affected patients, as is common practice following healthcare data breaches.
