What happened during the TriMed data breach?

Unauthorized actors gained access to TriMed's systems between September 13 and September 21, 2025, accessing files such as order forms and invoices containing patient information.

Who is responsible for the TriMed attack?

The Russia-linked ransomware group Lynx claimed responsibility for the attack and posted stolen data samples on the dark web.

What patient information was exposed?

Confirmed exposed data includes names, dates of birth, medical record numbers, and details regarding orthopedic implant parts and ordering surgeons.

Were Social Security numbers compromised?

TriMed stated that Social Security numbers were not involved, although the Lynx ransomware group claims to have stolen them along with other sensitive identifiers.

How is TriMed responding to the incident?

TriMed is providing 24 months of identity monitoring to affected individuals and has integrated a global security operations center to improve threat detection.

Incident

TriMed Orthopedic Device Maker Discloses Data Breach Following Ransomware Claims

published: March 31, 2026

Learn More

TriMed, Inc., a California-based orthopedic device manufacturer and subsidiary of Henry Schein, reported a data breach on March 27, 2026.

The incident involved unauthorized access to systems containing patient and surgical data between September 13 and September 21, 2025. The Lynx ransomware group claimed responsibility for the attack in October 2025, alleging they stole sensitive files after the company refused ransom demands.

The company confirmed the following data was compromised:

Full names
Dates of birth
Medical record numbers
Implant part information (part types and installation components)
Ordering surgeon names

The number of affected individuals is not disclosed. The company notified law enforcement and established a dedicated support hotline for impacted individuals, offering 24 months of complimentary identity monitoring.

TriMed Orthopedic Device Maker Discloses Data Breach Following Ransomware Claims

Read More
Family Dynamics Counseling Services reports data breach
Two NHS trusts affected by cyber attack on …
Retina Group of Washington ophtalmology reports data breach
Deaconess Health System Discloses Data Breach via Third-Party …
Dental Group of Amarillo reports data breach exposing …