Data Breach Impacts Patients of BayMark Health Services

BayMark Health Services, a leading provider of addiction treatment in North America, faced a data breach where attackers stole personal and health information of patients. The breach, attributed to the RansomHub ransomware gang, affected systems between September 24 and October 14, 2024.

  • BayMark serves over 75,000 patients daily across 400+ sites in the U.S. and Canada.
  • Attackers accessed systems for three weeks and stole sensitive patient data.
  • Exposed data includes Social Security numbers, driver’s licenses, treatment records, and insurance details.
  • RansomHub ransomware gang claimed responsibility, stealing 1.5TB of data.
  • Stolen data was leaked on the dark web after the attack.
  • BayMark is offering one year of free identity monitoring services through Equifax.
  • The incident follows a surge in healthcare breaches amid rising HIPAA regulation updates.

The BayMark breach highlights the vulnerability of healthcare providers to ransomware attacks. Patients are advised to stay vigilant, monitor accounts for suspicious activity, and utilize the offered identity monitoring services. As threats grow, enhanced security measures and regulatory updates are essential to protect sensitive healthcare data.