Qilin Ransomware Group Claims Breach of Columbia Medical Practice

Columbia Medical Practice suffered a ransomware attack on November 5, 2025. The Qilin ransomware group claimed the attack and say they broke into the network, locked files, and stole sensitive data. The attackers posted evidence of the breach on their dark web leak site on November 24, 2025

The stolen data includes:

• Personal Identifiers: Names, addresses, phone numbers, dates of birth, Social Security numbers, driver’s license numbers, and passport numbers.
• Protected Health Information (PHI): Health service locations, treatment details, diagnosis codes, prescription info, medical history, and insurance ID numbers.
• Financial Data: Patient account numbers and financial account numbers.

At least 3,000 individuals are affected by this breach. Columbia Medical Practice is currently reviewing the compromised files to identify every person at risk. They have committed to mailing direct notification letters once the review is completed. 

The practice reported the incident to the U.S. Department of Health and Human Services on December 5, 2025.

Security experts recommend that affected patients monitor their credit reports and place fraud alerts or credit freezes with major credit bureaus.