FMRS Health Systems Hit by Qilin Ransomware Attack, Exposing Sensitive Patient Data
FMRS Health Systems, Inc., a West Virginia-based nonprofit mental health provider serving Raleigh, Fayette, Summers, and Monroe counties, disclosed a data breach after detecting unauthorized access to its systems. The incident, discovered on February 27, 2026, involved an attacker copying files between January 20 and February 27, 2026. While the organization’s electronic health records and email systems remained unaffected, the breach exposed a wide range of sensitive patient data.
The ransomware group Qilin claimed responsibility for the attack, posting details on the dark web on March 13, 2026. FMRS reported the breach to the U.S. Department of Health and Human Services (HHS) on April 28, 2026.
Compromised data includes:
- Names, addresses, and dates of birth
- Social Security and driver’s license numbers
- Financial account details
- Medical history, diagnostic, and treatment records
- Prescription and physician information
- Health insurance and medical record numbers
The law firm Shamis & Gentile P.A. is investigating potential class action claims for affected individuals, citing damages such as identity theft risks, financial losses, and emotional distress. FMRS, founded in 1969, operates from its Beckley headquarters and provides behavioral health services, including counseling, addiction treatment, and recovery support.
Source: https://www.claimdepot.com/investigations/fmrs-health-systems-data-breach-2026
FMRS Health Systems Inc cybersecurity rating report: https://www.rankiteo.com/company/fmrs-health-systems-inc
"id": "FMR1778703988",
"linkid": "fmrs-health-systems-inc",
"type": "Ransomware",
"date": "1/2026",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare (Mental Health)',
'location': 'West Virginia, USA (Raleigh, Fayette, '
'Summers, Monroe counties)',
'name': 'FMRS Health Systems, Inc.',
'type': 'Nonprofit'}],
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': 'Names, addresses, '
'dates of birth, '
'Social Security '
'numbers, driver’s '
'license numbers',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)',
'Financial Information']},
'date_detected': '2026-02-27',
'date_publicly_disclosed': '2026-04-28',
'description': 'FMRS Health Systems, Inc., a West Virginia-based nonprofit '
'mental health provider, disclosed a data breach after '
'detecting unauthorized access to its systems. The incident '
'involved an attacker copying files, exposing a wide range of '
'sensitive patient data. The ransomware group Qilin claimed '
'responsibility for the attack.',
'impact': {'brand_reputation_impact': 'Potential identity theft risks, '
'financial losses, and emotional '
'distress',
'data_compromised': 'Sensitive patient data including names, '
'addresses, dates of birth, Social Security '
'numbers, driver’s license numbers, financial '
'account details, medical history, diagnostic '
'and treatment records, prescription and '
'physician information, health insurance and '
'medical record numbers',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential class action claims',
'payment_information_risk': 'High'},
'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'Qilin'},
'references': [{'date_accessed': '2026-03-13',
'source': 'Dark web post by Qilin'},
{'date_accessed': '2026-04-28',
'source': 'U.S. Department of Health and Human Services (HHS) '
'breach report'},
{'source': 'Shamis & Gentile P.A. investigation announcement'}],
'regulatory_compliance': {'legal_actions': 'Potential class action claims',
'regulations_violated': ['HIPAA'],
'regulatory_notifications': 'Reported to U.S. '
'Department of Health '
'and Human Services '
'(HHS)'},
'threat_actor': 'Qilin',
'title': 'FMRS Health Systems Hit by Qilin Ransomware Attack, Exposing '
'Sensitive Patient Data',
'type': 'Ransomware'}