Brevard Skin and Cancer Center Hit by Ransomware Attack, Exposing 1.8TB of Sensitive Data
Brevard Skin and Cancer Center, a Florida-based dermatology practice with five locations across Brevard County, disclosed a ransomware attack that compromised 1.8 terabytes of sensitive data. The breach was discovered on October 14, 2025, after the PEAR ransomware group claimed responsibility on a dark web forum on October 10, stating they had exfiltrated patient, employee, and vendor information.
The unauthorized access began around September 28, 2025, with attackers stealing personally identifiable information (PII) and protected health data. Exposed records include full names, dates of birth, Social Security numbers, home addresses, phone numbers, email addresses, clinical diagnoses, FMLA health conditions, and billing details.
Brevard Skin and Cancer Center engaged cybersecurity experts, notified the FBI, and secured its systems following the incident. The practice has started mailing notifications to affected individuals and posted a public notice on its website. As part of its response, the center is offering 24 months of complimentary credit monitoring through IDX to impacted parties.
The breach highlights ongoing risks to healthcare providers, where ransomware attacks continue to target sensitive patient data. Investigations into potential legal claims for affected individuals are underway.
Source: https://www.claimdepot.com/investigations/brevard-skin-and-cancer-center-data-breach-2025
Brevard Skin and Cancer Center cybersecurity rating report: https://www.rankiteo.com/company/brevard-skin-and-cancer-center
"id": "BRE1765390465",
"linkid": "brevard-skin-and-cancer-center",
"type": "Ransomware",
"date": "10/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 'Patients, employees, partners, '
'and vendors',
'industry': 'Dermatology',
'location': 'Brevard County, Florida, USA',
'name': 'Brevard Skin And Cancer Center',
'type': 'Healthcare Provider'}],
'customer_advisories': 'Notifying impacted individuals by mail and posting a '
'notice on the website',
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Full names',
'Dates of birth',
'Home addresses',
'Social Security numbers',
'Phone numbers',
'Diagnosis and clinical '
'information',
'Email addresses',
'Health conditions included in '
'FMLA forms',
'Billing and claims '
'information']},
'date_detected': '2025-10-14',
'date_publicly_disclosed': '2025-10-14',
'description': 'Brevard Skin and Cancer Center experienced a ransomware '
'attack claimed by the PEAR group, resulting in the exposure '
'of 1.8 TB of sensitive data, including personally '
'identifiable information of patients, employees, partners, '
'and vendors.',
'impact': {'data_compromised': '1.8 TB', 'identity_theft_risk': 'High'},
'investigation_status': 'Ongoing',
'ransomware': {'data_exfiltration': 'Yes'},
'recommendations': ['Monitor credit reports and account statements for '
'suspicious activity',
'Use complimentary 24-month credit monitoring service '
'through IDX',
'Place a fraud alert or security freeze on credit files',
'File a police report and contact the Federal Trade '
'Commission if identity theft is suspected',
'Stay vigilant for phishing emails or calls'],
'references': [{'source': 'Brevard Skin And Cancer Center Notice of Data '
'Event'}],
'response': {'communication_strategy': 'Notifying impacted individuals by '
'mail and posting a notice on the '
'website',
'containment_measures': 'Securing network',
'law_enforcement_notified': 'FBI',
'remediation_measures': 'Reviewing privacy policies',
'third_party_assistance': 'Cybersecurity experts'},
'threat_actor': 'PEAR group',
'title': 'Brevard Skin And Cancer Center Data Breach',
'type': 'Ransomware Attack'}