Skip to main content
health care professional health care professional

Highlands Oncology Group Data Breach Investigation

Written by Joseph Lyon on . Posted in Data Breach.

The data breach lawyers at The Lyon Firm are investigating new claims of a data breach at Highlands Oncology Group, as reported by Breachsense. There are currently allegations that the Medusa ransomware group targeted Highlands, but there are few details known. The healthcare entity has yet to make a statement regarding any attack.

Contact our data privacy lawyers following any data theft incident that may have compromised your personal data. We represent clients in all fifty states and our attorneys have settled numerous data breach lawsuits on behalf of plaintiffs nationwide.

What Happened at Highlands Oncology?

More details about the alleged attack should emerge in the coming weeks if it is in fact confirmed. Highlands Oncology Group is a healthcare provider based in Fayetteville, Arkansas. The outfit offers a range of cancer treatments and services, including chemotherapy, diagnostic imaging, radiation therapy, rehabilitation & massage, Theranostics and pharmacy services.

Back in 2023, Highlands Oncology Group filed a notice of data breach after hackers targeted the company and accessed patients’ sensitive information, including names, dates of birth, Social Security numbers, driver’s license numbers, state ID numbers, passport numbers, military ID numbers, financial account numbers, credit and/or debit card numbers, health insurance information, and medical information.

What is The Medusa Ransomware Group?

The Medusa ransomware group is considered a top threat actor in the current cybercriminal ecosystem. Companies that fall victim to Medusa ransomware are often pressured into paying ransoms via double extortion techniques, where the group threatens to release sensitive data unless they pay the ransom demand.

Medusa offers ransomware tools to affiliates, increasing the volume of attacks through a Ransomware-as-a-Service (RaaS) business model. The specific location of the Medusa ransomware group is not known, but some experts believe it operates out of Russia or one of its allied states.