Keys Dermatology Data Breach: Sensitive Patient Data Copied

On Feb. 26, 2025, Keys Dermatology and its management company, DermCare Management, discovered suspicious activity on their computer systems. An investigation was launched and on March 3, 2025 it was determined that a cybercriminal may have copied certain patient information from the network without permission.

The data breach may have exposed both personally identifiable information (PII) and protected health information (PHI). The total number of patients affected has not been released but the cybersecurity incident involves several dermatology practices in multiple states.

Compromised information may include names, Social Security numbers, driver's license number, medical records, health insurance information and financial information. Keys Dermatology published an updated Notice of Security Event on it's website on May 2, 2025.

Keys Dermatology's response

Keys Dermatology and DermCare Management are working to identify and notify impacted individuals by mail. A dedicated assistance line has been set up for patients with questions at 833-998-7517, Monday through Friday from 9am to 5pm EST.

If you receive a notice from Keys Dermatology or DermCare Management about this breach, you may want to:

• Sign up for free credit monitoring services, if offered.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

More information about the healthcare organization can be found on the Keys Dermatology website.