"ApolloMD, headquartered in Georgia, is a business associate to hospitals and health systems, providing them with services to enhance clinical operations and patient care, and to optimize financial performance. Founded in 1983, it remains a privately owned, physician-led group with no outside ownership accepted. Qilin's listing offered a few screenshots as proof of claims. None of the screenshots involved any personally identifiable information or protected health information, although two of the files involved some financial information."
"On September 15, ApolloMD posted a substitute notice on its website. The notice indicates that unauthorized access occurred between May 22 - May 23. It does not name the threat actor(s), it does not indicate whether any files were encrypted, and it does not indicate whether there was any ransom demand, although it is likely that they received a ransom demand."
On June 12, 2025, Qilin added ApolloMD to a darkweb leak site with a date of June 6 and claimed 238 GB of files. ApolloMD, headquartered in Georgia, provides services to hospitals and health systems to support clinical operations and financial performance. Qilin's listing included screenshots that did not show PII or PHI, though two files contained financial information. The listing promised data release on June 16, 2025, but the download link contained no data. ApolloMD posted a notice on September 15 indicating unauthorized access occurred May 22 - May 23, without naming threat actors or stating whether files were encrypted or a ransom demand occurred. ApolloMD notified multiple physician practices and sent patient notification letters on September 17.
Read at DataBreaches.Net
Unable to calculate read time
Collection
[
|
...
]