Lewis Drug: Lewis Drug faces lawsuits over data breach

Lewis Drug Hit by AliLock Ransomware Attack, Exposing Sensitive Customer Data

On March 3, a ransomware group called AliLock claimed to have breached the IT network of Lewis Drug, a regional pharmacy chain operating in South Dakota, Iowa, and Minnesota. The attack resulted in the theft of 110 gigabytes of data, including customer names, Social Security numbers, dates of birth, contact details, and confidential medical records.

Multiple lawsuits have since been filed against Lewis Drug, with plaintiffs seeking class action status on behalf of affected customers. The breach has drawn attention amid the 2026 Sioux Falls mayoral race, as a lawmaker involved in crafting new revenue policies for local governments faces scrutiny over broader cybersecurity concerns in the region.

The incident underscores the growing threat of ransomware attacks targeting healthcare and retail sectors, where sensitive personal data remains a prime target for cybercriminals.

Source: https://www.thedakotascout.com/p/lewis-drug-faces-lawsuits-over-data

LEWIS & CLARK BEHAVIORAL HEALTH SERVICES, INC. cybersecurity rating report: https://www.rankiteo.com/company/lewis-&-clark-behavioral-health-services-inc.

"id": "LEW1774442303",
"linkid": "lewis-&-clark-behavioral-health-services-inc.",
"type": "Ransomware",
"date": "3/2026",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Healthcare/Retail',
                        'location': 'South Dakota, Iowa, Minnesota',
                        'name': 'Lewis Drug',
                        'type': 'Pharmacy Chain'}],
 'data_breach': {'data_exfiltration': '110 gigabytes of data stolen',
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Customer names',
                                              'Social Security numbers',
                                              'Dates of birth',
                                              'Contact details',
                                              'Confidential medical records']},
 'date_detected': '2024-03-03',
 'description': 'On March 3, a ransomware group called AliLock claimed to have '
                'breached the IT network of Lewis Drug, a regional pharmacy '
                'chain operating in South Dakota, Iowa, and Minnesota. The '
                'attack resulted in the theft of 110 gigabytes of data, '
                'including customer names, Social Security numbers, dates of '
                'birth, contact details, and confidential medical records. '
                'Multiple lawsuits have since been filed against Lewis Drug, '
                'with plaintiffs seeking class action status on behalf of '
                'affected customers.',
 'impact': {'data_compromised': '110 gigabytes of data',
            'identity_theft_risk': 'High',
            'legal_liabilities': 'Multiple lawsuits filed, class action status '
                                 'sought'},
 'ransomware': {'data_exfiltration': 'Yes', 'ransomware_strain': 'AliLock'},
 'regulatory_compliance': {'legal_actions': 'Multiple lawsuits filed'},
 'threat_actor': 'AliLock',
 'title': 'Lewis Drug Hit by AliLock Ransomware Attack',
 'type': 'Ransomware'}

Lewis Drug: Lewis Drug faces lawsuits over data breach

Pathfinder LL&D Insurance Group: Pathfinder Insurance Group Data Breach Lawsuit Investigation

Scamwatch: Mobile fraud alert in Australia: How scammers take over your phone number

Basic-Fit, Pitney Bowes, Carnival, Hallmark, Inditex and Zara: Blog