Academic Urology & Urogynecology of Arizona Data Breach Exposes Sensitive Personal Info

On May 22, 2025, Academic Urology & Urogynecology of Arizona experienced a major data breach. The incident was the result of a ransomware attack by the group known as INC RANSOM, which publicly claimed responsibility for the breach on June 17, 2025, via a dark web posting on the Tor network.

This breach is particularly severe, as ransomware attacks often involve both the encryption and exfiltration of sensitive data, with the threat actors threatening to release the information if their demands are not met.

The compromised data includes a wide range of personally identifiable information (PII) and protected health information (PHI): full name, Social Security number, address, date of birth, driver’s license number or other government-issued identification numbers, tribal identification card, digital signatures, passport number, individual taxpayer identification number or IRS-issued identity protection personal identification number, health insurance policy number or subscriber identification number, unique health insurer identifiers, credit card information, financial account information, diagnosis and conditions information, lab results, medications, and any information in an individual’s application and claims history, including appeals records.

The breach was discovered when abnormal activity was detected on the company’s network. Academic Urology & Urogynecology of Arizona launched an investigation with the help of external cybersecurity professionals. The investigation is ongoing, and a forensic review is underway to determine the full scope of the incident and which individuals may have been affected.

Academic Urology & Urogynecology of Arizona's response

In response to the ransomware attack, Academic Urology & Urogynecology of Arizona took swift action to secure its systems and engaged cybersecurity experts to conduct a thorough investigation. The company has posted a detailed Data Security Notice on its website, outlining the steps taken and the types of information potentially involved.

Those potentially affected are being notified directly by mail if contact information is available. In the meantime, the company recommends that all individuals remain vigilant by monitoring their financial accounts, explanation of benefits statements, and credit reports for any suspicious activity.

Academic Urology & Urogynecology of Arizona has provided a toll-free response line at 833-353-3172, available Monday through Friday from 6 a.m. to 6 p.m. Pacific Time, for anyone seeking more information or wishing to determine if they are affected.

The company’s notice also includes detailed instructions for placing fraud alerts and security freezes, as well as advice on protecting medical information. These steps are especially important given the nature of the ransomware attack and the range of sensitive data involved.