Madison Healthcare Services reports ransomware attack exposing patient data

Madison Healthcare Services, a healthcare provider in western Minnesota, reports a data breach resulting from a ransomware attack claimed by the Worldleaks threat group. 

The breach allegedly compromised 5.7 terabytes of patient data. It occurred between July and August 2025. On September 23, 2025, the Worldleaks group claimed responsibility and posted information about the attack on their dark web site.

The types of exposed data and number of affected individuals is not disclosed. Worldleaks ransomware group publicly claimed to have leaked 5.7 terabytes of patient information on the dark web. 

Madison Healthcare Services has advised affected individuals to be careful of against theft and fraud, monitor their credit reports through annualcreditreport.com, place fraud alerts or credit freezes with major credit bureaus and review financial account statements for unauthorized activity.

The organization may offer complimentary credit monitoring services to affected individuals, but that's not confirmed.