A significant data breach has impacted several dermatology practices following a cyberattack on their shared management company, DermCare Management. The incident highlights the growing risk of third-party vendor vulnerabilities in the healthcare sector. DermCare Management, which supports over 60 locations across multiple states, experienced a hack on its network server. This has led to a cascading effect, with at least ten affiliated practices, primarily in Florida, now confirming their patients’ data was involved in the security incident.
The timeline of the breach began on February 26, 2025, when suspicious activity was first identified on the DermCare network. Although networks were reportedly secured quickly, a subsequent investigation confirmed by March 3, 2025, that patient information may have been copied by the unauthorized actors. Following this discovery, DermCare Management officially notified the U.S. Department of Health and Human Services (HHS) Office for Civil Rights in May 2025, using a placeholder number of 501 affected individuals as the total count was not yet available.
The scope of the breach is still unfolding, but several clinics have issued substitute breach notifications to alert their patients. The known list of affected providers includes Miami Plastic Surgery, Keys Dermatology, Hollywood Dermatology, and the Dermatology Treatment and Research Center in Texas, among others. Given that DermCare provides services in Florida, Texas, California, and Virginia, it is possible that more practices will announce their involvement as the investigation progresses.
The compromised data is extensive and highly sensitive, creating a significant risk for the affected patients. The information likely includes patient names, Social Security numbers, driver’s license numbers, and financial account details. Furthermore, protected health information (PHI), such as medical records and health insurance information, was also part of the compromised files, heightening the potential for fraud and identity theft.
In response to the breach, the affected dermatology practices are advising their patients to be extremely cautious. Individuals have been urged to monitor their financial account statements, review their credit reports for any suspicious activity, and remain vigilant against potential attempts at identity theft. As the review of the stolen files continues, the final number of affected individuals and the complete list of compromised data types will become clearer.
Reference:
