Written by : Dr. Aishwarya Sarthe
April 16, 2025
The attack, which occurred on Saturday, April 12, 2025, encrypted portions of the company’s network, disrupting its operations.
In a recent SEC filing, DaVita, a major provider of kidney dialysis services in the United States, confirmed it was targeted by a ransomware attack over the weekend. The attack, which occurred on Saturday, April 12, 2025, encrypted portions of the company’s network, leading to disruptions in its operations.
DaVita operates over 2,600 outpatient treatment centers nationwide and provides kidney care to thousands of patients with chronic kidney disease. Despite the breach, the company assured the public that patient care continues.
“We have implemented our contingency plans, and we continue to provide patient care,” DaVita said in its official statement, emphasizing that their immediate response protocols were activated as soon as the breach was detected.
Following the discovery of the attack, DaVita immediately implemented containment measures, including isolating the affected systems to prevent further damage. The company’s cybersecurity team, in collaboration with external experts, is investigating the full scope of the incident. While the extent of the damage remains unclear, there are concerns that sensitive patient data might have been compromised, a common consequence in ransomware attacks.
“Upon discovery, we activated our response protocols and implemented containment measures, including proactively isolating impacted systems,” DaVita's statement read. However, no official statement has been made regarding the theft of any personal data at this stage.
DaVita has not provided a specific timeline for when full system restoration will be completed. However, despite the disruption caused by the attack, patient care operations have not been halted. The company has assured its patients and the public that all necessary steps are being taken to minimize the attack's impact.
“We continue to provide patient care at our facilities, and while some operations have been impacted, we are taking immediate actions to resolve the situation,” DaVita confirmed.
As of now, no ransomware groups have publicly claimed responsibility for the attack. The company has not provided further updates on any new developments, but an ongoing investigation is being conducted.