What happened at Lorain Emergency Physicians, LLC?

Lorain Emergency Physicians, LLC experienced a data breach caused by a ransomware attack on ApolloMD Business Services, their Georgia-based administrative services provider. The attack was claimed by the Qilin cybercriminal group and was discovered on May 22, 2025.

What personal information was exposed in the breach?

The exposed information included patient names, dates of birth, Social Security numbers, home addresses, diagnosis information, provider names, dates of service, treatment information, and health insurance information.

How much data was stolen in the attack?

According to the Qilin ransomware group, the attack resulted in the theft of 238GB of data. The exact number of affected individuals has not been disclosed.

What is ApolloMD doing to help affected patients?

ApolloMD is offering free credit monitoring services to patients whose Social Security numbers were exposed in the breach. They have also launched an investigation and notified law enforcement about the incident.

Who was responsible for the ransomware attack?

The ransomware attack was claimed by the Qilin cybercriminal group. ApolloMD has notified law enforcement about the incident as part of their response.

Incident

Lorain Emergency Physicians report third party breach through the ransomware attack on ApolloMD

Q: When did the data breach occur and when were people notified?

The incident was discovered on May 22, 2025. ApolloMD began notifying affected physician practices between July 21 and September 11, 2025, and notification letters were mailed to impacted individuals on September 17, 2025.

Q: How can I get more information or help regarding this breach?

ApolloMD has established an incident response line at 833-397-6797, available Monday through Friday between 8 a.m. and 8 p.m. Eastern Time for affected individuals who need assistance or have questions.

published: Sept. 27, 2025

Learn More

Lorain Emergency Physicians, LLC, a healthcare organization based in Lorain, Ohio, is reporting a data breach caused by an incident affecting ApolloMD Business Services, a Georgia-based administrative services provider.

The breach was caused by a ransomware attack claimed by the Qilin cybercriminal group. ApolloMD discovered the incident on May 22, 2025, launched an investigation and notified law enforcement.

The exposed personal and protected health information included:

Patient names
Dates of birth
Social Security numbers
Home addresses
Diagnosis information
Provider names
Dates of service
Treatment information
Health insurance information

The number of affected individuals has not been disclosed. According to the Qilin ransomware group, the attack resulted in the theft of 238GB of data.

ApolloMD began notifying affected physician practices between July 21 and September 11, 2025, and notification letters were mailed to impacted individuals on September 17, 2025.

The company is offering free credit monitoring services to patients whose Social Security numbers were exposed in the breach. ApolloMD has also established an incident response line at 833-397-6797, available Monday through Friday between 8 a.m. and 8 p.m. Eastern Time.

Lorain Emergency Physicians report third party breach through the ransomware attack on ApolloMD

Read More
Data breach at Integrated Oncology Network exposes patient …
DoJ and DoD email addresses exposed in MOVEit …
Argentinian Comprehensive Medical Care Program (PAMI) hacked, stolen …
HMG Healthcare reports cyberattack, data breach
Quorum Federal Credit Union reports MOVEit related Data …