Security News Seattle-area neurologist warns 13,500 people of data breach that leaked SSNs, medical info

[Miravi]

Content source

https://www.comparitech.com/news/seattle-area-neurologist-warns-13500-people-of-data-breach-that-leaked-ssns-medical-info/

Neurological Associates of Washington near Seattle this week confirmed it notified 13,500 state residents of a December 2025 data breach that compromised the following info:

• Names
• Social Security numbers
• Diagnoses
• Disability codes
• Medical info
• Dates of birth
• Addresses
• Other types of information

A cybercriminal group called DragonForce took credit for the attack on December 27, 2025, saying it stole 1.4 TB of data from the clinic. To prove its claim, DragonForce posted sample images of what it says are documents stolen from Neurological Associates of Washington.

Neurological Associates of Washington cited DragonForce as the attacker, but Comparitech cannot verify the authenticity of the allegedly stolen data. We do not know if Neurological Associates of Washington paid a ransom, how much DragonForce demanded, or how attackers breached the clinic’s network. Comparitech contacted Neurological Associates of Washington for comment and will update this article if it replies.

“Our facilities server that stored medical records from 2019-2025 was attacked and encrypted. We discovered some of the data one of our computers was stolen,” says the clinic’s notice to victims.

Neurological Associates of Washington is offering eligible data breach victims 12 months of free credit monitoring.

Seattle-area neurologist warns 13,500 people of data breach that leaked SSNs, medical info - Comparitech

Neurological Associates of Washington warned 13,500 people of a ransomware breach that leaked SSNs and medical info. DragonForce took credit.

www.comparitech.com

 

[Halp2001]

Although I am not from the U.S., it is important to remember that these kinds of data breaches are a global risk . In any country, it is advisable to check bank accounts regularly , use two‑factor authentication , and stay alert to fraud attempts .

In this case, the breach was caused by the institution rather than the patients, but the impact can still be reduced through protective measures such as credit monitoring or fraud alerts.

And although such breaches cannot be prevented, it is possible to decide how to respond: strengthening personal security is a way to regain control in the face of vulnerability .