Dealmed Medical Supplies Data Breach: 105.89 GB of Data Compromised

On June 7, 2025, Dealmed Medical Supplies, LLC, a major distributor and manufacturer of medical supplies, discovered problematic activity within its network. An investigation took place, and determined that sensitive company data may have been accessed or acquired by an unauthorized actor on the same day.

A review of the breached data concluded on Oct. 31, 2025, and revealed that the data breach compromised personally identifiable information (PII) belonging to an unknown number of individuals. Exposed information included names and Social Security numbers.

The ransomware group DragonForce claimed responsibility for the cyberattack and alleged it had obtained 105.89 GB of Dealmed’s data. The group posted about the breach on the Tor network on June 26, 2025, indicating this was a ransomware event.

Dealmed began notifying affected individuals by mail on Nov. 4, 2025. The healthcare company also disclosed the cybersecurity incident to the New Hampshire Attorney General's office on Nov. 6, 2025.

Dealmed Medical Supplies' response

Following the discovery of the breach, Dealmed secured its systems and launched an investigation to determine the extent of the incident. In addition to required disclosures, the company is offering affected individuals 24 months of free TransUnion Cyberscout single-bureau credit monitoring services.

If you receive a notice from Dealmed Medical supplies, or your provider, about this breach, you may want to:

• Sign up for the free credit monitoring services within three months of receiving your mailed notice.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

Impacted individuals can also contact an assistance line with questions at 1-800-405-6108 Monday through Friday from 8:00 a.m. to 8:00 p.m.