Valley Eye Associates Announces Data Security Incident Affecting Sensitive Data

Wisconsin-based Valley Eye Associates recently disclosed a data security incident that resulted in the compromise of sensitive personal information belonging to its patients and staff.

 

Valley Eye Associates is a multi-location eye care provider serving Northeast Wisconsin’s Fox Valley area, delivering comprehensive vision services—from routine eye exams and contact lenses to advanced surgical procedures such as LASIK and cataract surgery—supported by experienced physicians, advanced technology, and a strong commitment to patient care.

 

In a data security incident notice published on its website, Valley Eye Associates said that on October 8, it was a victim of a ransomware attack where threat actors infiltrated its internal network, stole confidential data and deployed malware to encrypt critical systems. The ophthalmology care provider immediately launched an investigation with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

It also took steps to secure the affected network and notified law enforcement authorities about the incident.

 

“The investigation conducted by third-party forensic specialists determined the incident occurred between October 8, 2025, and October 9, 2025. The investigation identified access to limited devices/documents. At this time, we are currently working to review those documents so that any individuals whose information is included therein can be notified in compliance with State laws and HIPAA,” Valley Eye Associates said.

 

Valley Eye Associates said that it is in the process of reviewing the affected data and will provide notification to impacted individuals upon completion of that review.

 

While the ophthalmology care provider found no evidence of the compromised information being misused, it has advised all affected individuals to regularly monitor their credit reports, account and benefit statements and report any suspicious activity to law enforcement authorities, including the police and state attorney general.

 

 

The notorious Qilin ransomware group claimed responsibility for the cyber attack on Valley Eye Associates, listing it as a victim on its data leak site. The group said it had obtained 139 GB of confidential data from the healthcare provider and threatened to release the entire database unless its ransom demands are met.