The AlphV ransomware group has claimed to have stolen confidential patient data from MNGI Digestive Health, a physician-owned gastroenterology practice based in Minneapolis. According to a report from DataBreaches.net, AlphV posted a notice on its website on September 24, stating that MNGI had 48 hours to contact them, or the stolen data would be published. The ransomware group threatened that patients would be massively notified about the data breach, potentially leading to a class action lawsuit.
AlphV also warned of revealing all violations of sensitive data storage in MNGI’s system. To substantiate its claims, the group uploaded images from diagnostic tests, albeit without legible patient IDs or details. As of the report, MNGI had not responded to a request for comment.