Kettering Health Confirms Data breach Exposed Patient and Staff Data

News21 Oct 2025

Ohio-based healthcare provider Kettering Health revealed that a data security breach earlier this year compromised the sensitive personal information of its patients and staff.

Ohio-based healthcare provider Kettering Health said the data security incident it suffered earlier this year compromised the sensitive personal information of its patients and staff.

Headquartered in Kettering, Ohio, Kettering Health is a Seventh-day Adventist non-profit organisation that operates hospitals, stand-alone emergency departments, clinics and Kettering College.

In a data security incident notice published on its website, Ohio-based healthcare provider Kettering Health said that on May 20, it experienced a system-wide technology outage that affected its ability to access patient care systems across the organisation.

An investigation, with assistance from external cyber security experts, revealed that Kettering Health was a victim of a ransomware attack where the Interlock ransomware group infiltrated its internal network, encrypted its systems and stole confidential patient and staff data.

“The investigation determined there was unauthorised access to Kettering’s network between April 9, 2025, and May 20, 2025, and that certain files and folders within the network were viewed and/or taken without authorisation during that time,” Kettering Health said.

In an update, the healthcare provider said the compromised data included names, contact information, Social Security numbers, patient identification numbers, medical record numbers, medical information, treatment information, diagnosis information, health insurance information, driver’s license/stated identification numbers, financial account information, education records and dates of birth.

On June 4, the Interlock ransomware group claimed responsibility for the security incident on Kettering Health and listed it as a victim on its data leak site. The group claimed to have obtained 941 GB of data, including sensitive patient information, pharmacy and blood bank records, payroll data, police personnel files, scanned identity documents such as passports, and more.

The hacker group gave Kettering Health a 72-hour deadline to meet its ransom demands. Following unsuccessful negotiations, the group has since released the stolen data.

cyber crime