Dialysis Firm DaVita Hit by Ransomware Attack, Says Patient Care Continues
DaVita, a leading provider of dialysis services in the United States, has been hit by a ransomware attack that has disrupted some of its operations. Despite the attack, the company is continuing to provide patient care and has taken steps to restore certain functions.
The cyberattack was discovered on Saturday, and DaVita is currently assessing the incident with third-party cybersecurity professionals. The company has also notified law enforcement about the attack, according to a regulatory filing released on Monday.
DaVita provides dialysis services through its network of nearly 3,000 outpatient clinics and at-home services. Last year, the company served around 200,000 patients in the U.S., besides providing services through about 760 hospitals, according to its annual report.
The incident marks yet another cyberattack in the U.S. healthcare sector. In 2023, a U.S. unit of DaVita's rival Fresenius Medical Care was hit by a hack that resulted in the theft of data including medical records on 500,000 patients and former patients.
Last year, UnitedHealth Group's tech unit was also hit by a ransomware attack that affected the personal information of 100 million people and caused widespread disruptions in processing health insurance claims, including with DaVita.
The Impact of the Attack
While the extent of the disruption to DaVita's operations is unclear, the company has taken steps to mitigate the impact on patient care. It has separated some impacted systems from its network as part of its containment measures.
"We are committed to providing uninterrupted care to our patients," said a spokesperson for DaVita. "While we take all necessary precautions to protect our network and prevent attacks, there is always a risk of cyber incidents."