Summary: Consulting Radiologists in Minnesota notified nearly 512,000 patients of a February cyberattack, revealing that unauthorized access to sensitive information occurred, amid claims by two ransomware gangs, LockBit and Qilin; the company has since strengthened its cybersecurity measures to prevent future incidents.

Key Takeaways:

  1. Significant Data Breach Impact: Consulting Radiologists experienced a major cyberattack that led to unauthorized access of sensitive patient information including names, addresses, Social Security numbers, and medical records, affecting nearly 512,000 patients.
  2. Involvement of Ransomware Gangs: The incident is linked to two ransomware gangs, LockBit and Qilin, with Qilin claiming responsibility for stealing over 70GB of data. This highlights the international and organized nature of cyber threats targeting healthcare infrastructure.
  3. Proactive Security Enhancements: In response to the breach, Consulting Radiologists has upgraded its cybersecurity defenses by enlisting a cybersecurity firm, adding more robust monitoring tools, and strengthening overall system protections to ward off future attacks, although specific details of the intrusion method remain undisclosed.


In a concerning development in the cybersecurity landscape, Consulting Radiologists, a healthcare provider based in Minnesota, has issued a notification to nearly 512,000 patients following a cyberattack in February. The company, which offers radiology services to 22 hospitals and clinics and provides remote teleradiology across the upper Midwest, detected suspicious activity in its network on February 12. Investigations revealed that an unauthorized party had accessed a significant volume of sensitive patient information.

The breach exposed patients’ names, addresses, dates of birth, Social Security numbers, health insurance details, and medical records. Although there is currently no evidence that this data has been misused, Consulting Radiologists has taken the precaution of informing affected individuals and offering them a year of free credit monitoring services.

Inside the Breach

This incident comes amid claims by two ransomware gangs, LockBit and Qilin, that they were behind the data theft. Notably, the latter, a Russia-based group, boasted of stealing over 70GB of data, which included more than 94,667 files. Qilin is also implicated in the Synnovis ransomware attack, which has severely impacted healthcare operations in London, demonstrating a disturbing trend of targeted attacks on critical healthcare infrastructure.

Safeguarding Against Future Cyber Threats

In response to the breach, Consulting Radiologists has enlisted a cybersecurity firm to bolster its network security, introducing additional monitoring tools and enhancing system protections to prevent future incidents. However, details about how the attackers penetrated the network or whether a ransom was demanded have not been disclosed.

This event underscores the growing threat of cyberattacks in the healthcare sector, highlighting the critical need for robust cybersecurity measures to protect sensitive patient data and ensure the continuity of medical services.