SimonMed Imaging Data Breach Lawsuit Investigation
File Your Claim Now

Dapeer Law, P.A., a top-rated class action law firm, is investigating the SimonMed Imaging data breach. If you received notice that your information was exposed during this breach, you may be entitled to compensation. It's free to join our investigation to see if we can help you recover.

SimonMed Imaging Data Breach Lawsuit Investigation

Were your Social Security number or medical records exposed by SimonMed Imaging’s recent ransomware attack? A notorious cyber-gang claims to have stolen more than 212 GB of sensitive data and is threatening to publish it soon. Find out how to protect yourself and whether you can pursue compensation.

Download SimonMed Notice (PDF)

What Happened?

On January 27, 2025, SimonMed Imaging learned from one of its vendors of a potential security incident. The following day, its own monitoring detected suspicious activity. A forensic investigation confirmed that the MEDUSA ransomware group accessed SimonMed’s network between January 21 and February 5, 2025, exfiltrating approximately 212.6 GB of data.

What Information Was Exposed?

The compromised systems reportedly held both personally identifiable information (PII) and protected health information (PHI), including:

  • Full names & addresses
  • Social Security numbers
  • Dates of birth
  • Government-issued IDs (e.g., driver’s license)
  • Medical record & patient numbers
  • Medical conditions, diagnoses & treatment details
  • Medication and prescription data
  • Health-insurance information
  • Dates of service & provider names
  • Financial or billing information

Who Is SimonMed Imaging?

Founded in 2003, SimonMed Imaging operates more than 160 accredited outpatient imaging centers across 11 states, offering MRI, CT, ultrasound, mammography, PET/CT, X-ray and other diagnostic services. The company employs nearly 1,000 healthcare professionals and serves millions of patients each year.

SimonMed’s Response

After containing the intrusion, SimonMed:

  • Reset all passwords and strengthened multi-factor authentication
  • Installed advanced endpoint detection & response monitoring
  • Removed third-party vendor access and restricted network traffic to whitelisted sources
  • Engaged cybersecurity and privacy specialists
  • Notified federal law-enforcement and relevant regulators
  • Established a dedicated assistance line at 602-688-6116 (Mon-Fri, 8 AM-5 PM AZ)

Steps You Can Take Right Now

  1. Monitor your credit & financial accounts. Request free annual credit reports from Equifax, Experian and TransUnion via AnnualCreditReport.com or 877-322-8228.
  2. Place a fraud alert. Contact any one of the three major credit bureaus; it must notify the other two.
  3. Consider a security freeze. This blocks new credit inquiries until you lift the freeze.
  4. Review medical statements. Look for unfamiliar providers or procedures that may signal medical identity theft.
  5. Stay vigilant. Watch for phishing emails or calls referencing SimonMed or your healthcare data.

Your Legal Rights & Options

Healthcare providers are legally required to safeguard patient information under HIPAA and various state privacy laws. If SimonMed Imaging failed to use reasonable cybersecurity measures, affected individuals could:

  • Seek reimbursement for out-of-pocket expenses (credit monitoring, time spent, etc.)
  • Claim compensation for identity theft or fraud losses
  • Pursue statutory damages where allowed under state law
  • Demand stronger data-security safeguards and ongoing credit protection

Class-action investigations are under way to determine SimonMed’s liability. Preserve any letters or emails you received from SimonMed and document unusual activity—this evidence can strengthen your potential claim.

Frequently Asked Questions

How do I know if SimonMed Imaging exposed my information?

SimonMed is mailing written notices to individuals whose data was stored on affected servers. If you receive a letter—or if you visited a SimonMed facility between January 21 and February 5, 2025—assume your information may be at risk and take the protective steps outlined above.

What should I do if I see suspicious activity on my accounts?

Contact your bank or credit-card issuer immediately, file a dispute, and ask for a replacement card or account number. Then file an identity-theft report with the Federal Trade Commission and consider placing a security freeze.

Is SimonMed Imaging offering free credit monitoring?

SimonMed’s official notice indicates that additional protective services may be offered. Check your notification letter for enrollment instructions or call 602-688-6116 for details.

Can I file a lawsuit against SimonMed Imaging for the data breach?

Potentially, yes. Victims may pursue individual or class-action claims for damages resulting from negligent data-security practices. Eligibility depends on your state’s laws and proof of exposure. Preserve all breach-related documentation and consult a data-privacy attorney for specific guidance.

What is MEDUSA ransomware?

MEDUSA is a cyber-criminal group specializing in double-extortion tactics—stealing data before encrypting it, then threatening to leak the information if ransom demands are not met.

Key Takeaways

  • The breach window lasted from January 21 – February 5, 2025.
  • Stolen data includes Social Security numbers, medical and financial information.
  • Monitor your credit, place fraud alerts, and consider legal action if harmed.

Stay proactive—protect your identity now and explore your legal rights to recovery.

Attorney Advertising. Prior results do not guarantee a similar outcome.

File Your Claim Now