Naper Grove Vision Care Breach Affects Patient Info

Naper Grove Vision Care, an optometry practice serving western Chicago, experienced a data breach. The incident was discovered on May 24, 2025 and involved a ransomware attack carried out by the INTERLOCK group, who claimed responsibility for hacking the network and stealing files.

INTERLOCK publicized the attack on the Tor network on June 2, 2025, threatening to release or misuse the stolen data. An investigation revealed that the stolen files contained both personally identifiable information (PII) and protected health information (PHI) of Naper Grove Vision Care patients.

Compromised information includes names, addresses, dates of birth, Social Security numbers, driver's license numbers, patient numbers, health insurance numbers and explanation of benefits documentation, and/or medical condition or treatment information. Naper Grove Vision Care published a Notice of Data Security Incident on its website.

The practice also disclosed the data breach to the U.S. Department of Health and Human Services on July 10, 2025, reporting at least 500 patients affected.

Naper Grove Vision Care's response

In addition to required state and federal disclosures, Naper Grove Vision Care will notify affected individuals by mail. The company has also set up a dedicated call center to answer questions about the ransomware attack at 800-405-6108, Monday through Friday, from 9:00 am to 9:00 pm Central Time.

If you receive a data breach notice from Naper Grove Vision Care, you may want to:

• Sign up for free credit monitoring services, if offered.
• Monitor your credit reports and financial accounts for any unusual activity.
• Be alert for phishing emails or phone calls that may use your exposed information.
• Consider placing a fraud alert or credit freeze with major credit bureaus.

More information about the optometry practice can be found on the Naper Grove Vision Care website.