Glendale Obstetrics & Gynecology Hit by Ransomware Attack, Exposing Patient Data
Glendale Obstetrics & Gynecology, a women’s healthcare provider in Glendale, Arizona, disclosed a ransomware attack on December 24, 2025, after the incident was first detected on the dark web on November 11, 2025. The breach, attributed to the cybercriminal group SAFEPAY, targeted the clinic’s systems, potentially exposing sensitive patient data.
While the exact scope of compromised information remains undisclosed, ransomware attacks on medical providers typically involve personally identifiable information (PII) and protected health information (PHI), including names, addresses, Social Security numbers, medical records, insurance details, and financial data. The firm, led by board-certified providers like Dr. Diana Heard, MD, serves patients with services ranging from prenatal care to gynecologic surgery.
Under HIPAA regulations, healthcare providers must notify affected individuals of breaches. Though Glendale Obstetrics & Gynecology has not publicly detailed the exposed data, law firm Shamis & Gentile P.A. is investigating potential legal action for impacted patients, who may be eligible for compensation. The incident underscores the growing threat of ransomware against healthcare organizations and the risks to patient privacy.
Source: https://www.claimdepot.com/investigations/glendale-obstetrics-and-gynecology-data-breach-2026
Glendale Obstetrics and Gynecology P.C. cybersecurity rating report: https://www.rankiteo.com/company/glendale-obstetrics-and-gynecology-p-c
"id": "GLE1769201087",
"linkid": "glendale-obstetrics-and-gynecology-p-c",
"type": "Ransomware",
"date": "11/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'Glendale, Arizona, USA',
'name': 'Glendale Obstetrics & Gynecology',
'type': 'Healthcare Provider'}],
'data_breach': {'personally_identifiable_information': 'Names, addresses, '
'Social Security '
'numbers, medical '
'records, insurance '
'details, financial '
'data',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally identifiable '
'information (PII)',
'Protected health information '
'(PHI)']},
'date_detected': '2025-11-11',
'date_publicly_disclosed': '2025-12-24',
'description': 'Glendale Obstetrics & Gynecology, a women’s healthcare '
'provider in Glendale, Arizona, disclosed a ransomware attack '
'on December 24, 2025, after the incident was first detected '
'on the dark web on November 11, 2025. The breach, attributed '
'to the cybercriminal group SAFEPAY, targeted the clinic’s '
'systems, potentially exposing sensitive patient data '
'including personally identifiable information (PII) and '
'protected health information (PHI).',
'impact': {'data_compromised': 'Personally identifiable information (PII), '
'protected health information (PHI)',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential HIPAA violations'},
'references': [{'source': 'Incident disclosure'}],
'regulatory_compliance': {'legal_actions': 'Potential legal action by Shamis '
'& Gentile P.A.',
'regulations_violated': ['HIPAA']},
'threat_actor': 'SAFEPAY',
'title': 'Glendale Obstetrics & Gynecology Hit by Ransomware Attack, Exposing '
'Patient Data',
'type': 'Ransomware'}