Texas Digestive Specialists hit by InterLock ransomware, exposing patient medical records

Texas Digestive Specialists, a medical practice providing gastroenterology and surgical services to adults and children across three Texas locations, has reportedly fallen victim to a ransomware attack. 

The attack was claimed by the InterLock ransomware operation, encrypting the medical practice's systems and allegedly stealing 263 GB of sensitive patient data, a total of 16,920 folders containing 215,245 files.

Analysis of the stolen data revealed that the cybercriminals had gained access to protected health information (PHI), in the form of PDF files containing detailed laboratory pathology reports. The exposed data includes information spanning nearly two years of medical records:

• Patient names and personal identifiers
• Dates of birth
• Laboratory testing dates and results
• Medical history information
• Clinical findings and pathology reports
• Treatment and diagnostic information contained in medical records

All compromised reports bore Texas Digestive Specialists' official letterhead.

The number of affected patients has not been disclosed. The practice has not filed any breach notifications with the U.S. Department of Health and Human Services' Office for Civil Rights or the Texas Attorney General's office.