Apex Spine Data Breach: SSNs and Health Records Exposed for 2,500 Patients

Apex Spine & Neurosurgery, LLC has experienced a data breach that has impacted approximately 2,500 individuals in the United States. The incident was first discovered on Dec. 23, 2025, when the organization detected that an unauthorized cyber actor had accessed part of its computer network and deployed ransomware to lock files.

The organization launched a comprehensive investigation to determine the scope of the incident and identify the individuals whose information may have been compromised.

An investigation revealed that the attacker had already copied files from the network on Dec. 9, 2025. Although the review of affected files is ongoing as of Feb. 16, 2026, the ransomware group INTERLOCK claimed responsibility for the attack, stating on Jan. 6, 2026, that they had obtained 20GB of the organization’s data and posted the breach on a dark web site using the Tor network.

The exposed data includes a wide range of personally identifiable information (PII) and protected health information (PHI).

Specifically, the files may contain names, addresses, phone numbers, dates of birth, Social Security numbers, driver’s license numbers, passport numbers, other government identifiers, locations and dates of health services, treatment or condition details, diagnosis codes, prescription information, medical histories, assigned physicians, and health services payment information including financial account numbers (without security or access codes), health insurance identification numbers, and patient account numbers.

The company’s electronic health records platform, which is maintained in a separate network environment, was not affected by this incident.

The company has published a notice on its website and will mail direct notifications to impacted individuals as soon as the review is complete and addresses are confirmed.

The breach was also officially reported to the U.S. Department of Health and Human Services on Feb. 6, 2026.

Apex Spine & Neurosurgery's response

To help those affected, Apex Spine & Neurosurgery is providing detailed guidance on monitoring credit reports, placing fraud alerts or credit freezes, and protecting against identity theft. The company encourages individuals to remain vigilant by reviewing account statements and explanation of benefits, and by monitoring their free annual credit reports for any suspicious activity.

The notice also includes steps for protecting minor dependents’ information and instructions for placing a “deceased – do not issue credit” flag for recently deceased loved ones.

Given the sensitive nature of the exposed data and the involvement of a ransomware group, individuals are strongly advised to take advantage of these resources and monitor their financial and health accounts closely.

The company is also evaluating additional technical measures and reviewing its cyber auditing practices to prevent similar incidents in the future.