Beaumont Bone & Joint Institute Hit by Ransomware Attack

Beaumont Bone & Joint Institute, an orthopedic clinic in Texas, experienced a major data breach. On Sept. 4, 2025, the PEAR ransomware group claimed responsibility for the cyberattack and posted on the dark web, stating they had hacked into the medical group's internal systems and obtained sensitive data. The attack was classified as a ransomware incident and was first disclosed on the Tor network, a common platform for such criminal activity.

This type of cybersecurity incident often involves the exposure of both personally identifiable information (PII) and protected health information (PHI). Compromised data may include patient names, addresses, dates of birth, Social Security numbers, health insurance information, medical records and payment information.

The total number of affected individuals has not been released but is believed to include several thousand patients. Ransomware incidents often result in data being encrypted and stolen, with cybercriminals threatening to leak or sell the information if their demands are not met, which puts people at a major risk for identity theft and fraud.

Beaumont Bone & Joint Institute's response

Beaumont Bone & Joint Institute has not yet issued a public statement regarding the breach. The medical group will be responsible for notifying impacted individuals by mail and issuing requires state and federal disclosures.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Beaumont Bone & Joint.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For more information about the orthopedic medical group, visit the Beaumont Bone & Joint Institute website.