Insightin Health: Healthcare Technology Company Discloses Ransomware Attack

Healthcare Tech Firms Hit by Ransomware and Data Breaches in Late 2025

Two healthcare technology companies Insightin Health and Clinic Service Corporation recently disclosed cyberattacks that exposed sensitive patient data, with the Medusa ransomware group claiming responsibility for one of the incidents.

Insightin Health (Maryland)

The Baltimore-based healthcare technology firm, which provides AI-driven digital health platforms to insurers and payers, detected suspicious network activity in September 2025. A forensic investigation confirmed unauthorized access between September 17 and 23, 2025, compromising protected health information (PHI) of its clients. Exposed data included names, dates of birth, contract numbers, health insurance identifiers, Medicare Beneficiary Identifiers, and provider details.

While the company’s breach notice did not name the attackers, the Medusa ransomware group later claimed responsibility, alleging it exfiltrated 378 GB of data and threatened to publish it. Affected individuals were advised on steps to mitigate potential misuse of their information.

Clinic Service Corporation (Colorado)

The Denver-based medical billing and practice management company identified a hacking incident on August 17, 2025, with unauthorized access occurring between August 10 and 17, 2025. The breach exposed a broad range of sensitive data, including names, addresses, medical records, diagnoses, treatment details, insurance information, and Medicare/Medicaid numbers.

Affected individuals were offered complimentary credit monitoring and identity theft protection services, and regulators were notified. However, the incident has not yet appeared on the HHS’ Office for Civil Rights website, leaving the total number of impacted individuals unclear.

Both incidents underscore the ongoing targeting of healthcare organizations by cybercriminals, with ransomware groups increasingly leveraging stolen data for extortion.

Source: https://www.hipaajournal.com/insightin-health-clinic-service-corporation-data-breach/

Insightin Health cybersecurity rating report: https://www.rankiteo.com/company/insightin-health

"id": "INS1770309593",
"linkid": "insightin-health",
"type": "Ransomware",
"date": "9/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Healthcare',
                        'location': 'Maryland, USA',
                        'name': 'Insightin Health',
                        'type': 'Healthcare Technology Firm'},
                       {'industry': 'Healthcare',
                        'location': 'Colorado, USA',
                        'name': 'Clinic Service Corporation',
                        'type': 'Medical Billing and Practice Management '
                                'Company'}],
 'customer_advisories': 'Affected individuals advised on steps to mitigate '
                        'potential misuse of their information; complimentary '
                        'credit monitoring and identity theft protection '
                        'services offered (Clinic Service Corporation).',
 'data_breach': {'data_exfiltration': '378 GB (Insightin Health)',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High (Protected Health Information - '
                                        'PHI)',
                 'type_of_data_compromised': ['Names',
                                              'Dates of birth',
                                              'Contract numbers',
                                              'Health insurance identifiers',
                                              'Medicare Beneficiary '
                                              'Identifiers',
                                              'Provider details',
                                              'Addresses',
                                              'Medical records',
                                              'Diagnoses',
                                              'Treatment details',
                                              'Insurance information',
                                              'Medicare/Medicaid numbers']},
 'date_detected': ['2025-09', '2025-08-17'],
 'description': 'Two healthcare technology companies Insightin Health and '
                'Clinic Service Corporation recently disclosed cyberattacks '
                'that exposed sensitive patient data, with the Medusa '
                'ransomware group claiming responsibility for one of the '
                'incidents.',
 'impact': {'data_compromised': 'Sensitive patient data',
            'identity_theft_risk': 'High'},
 'investigation_status': 'Ongoing',
 'lessons_learned': 'Healthcare organizations are prime targets for '
                    'cybercriminals, and ransomware groups increasingly '
                    'leverage stolen data for extortion.',
 'motivation': 'Extortion',
 'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'Medusa'},
 'references': [{'source': 'HHS’ Office for Civil Rights website'}],
 'regulatory_compliance': {'regulations_violated': ['HIPAA'],
                           'regulatory_notifications': 'Yes (HHS’ Office for '
                                                       'Civil Rights notified '
                                                       'by Clinic Service '
                                                       'Corporation)'},
 'response': {'communication_strategy': 'Breach notices and advisories to '
                                        'affected individuals'},
 'threat_actor': 'Medusa ransomware group',
 'title': 'Healthcare Tech Firms Hit by Ransomware and Data Breaches in Late '
          '2025',
 'type': ['Ransomware', 'Data Breach']}