Pdi Health Data Breach may have leaked 373,453 patient records

On May 14, 2025, the Everest ransomware group claimed responsibility for a major cyberattack against Pdi Health, the provider of portable diagnostic imaging services. According to Everest’s dark web posting, attackers infiltrated Pdi Health’s systems and exfiltrated a trove of sensitive data, affecting more than 373,453 patient records.

The compromised information includes both personally identifiable information (PII) and protected health information (PHI): names, Social Security numbers, dates of birth, billing information, electronic medical records (EMRs), test results and detailed medical histories.

Everest posted sample screenshots of stolen data on their dark web portal and threatened to publish the full dataset within three to four days if their demands were not met.

The nature of the breach being ransomware means that attackers not only encrypted Pdi Health’s files but also stole data before making their extortion attempt. The exposure of EMRs and medical histories, in particular, raises the risk of identity theft, medical fraud and other forms of misuse.

Pdi Health has not publicly disclosed the full scope of their response as of the date of publishing. However, given the scale and sensitivity of the data involved, individuals who have received diagnostic services from Pdi Health in recent years should remain vigilant.

Recommendations for those who may be affected:

• Monitor credit reports and financial accounts for suspicious activity
• Consider placing a fraud alert or security freeze with major credit bureaus
• Watch for phishing emails or calls that may use stolen information to target victims
• Review medical records and insurance statements for unfamiliar activity

If Pdi Health provides further guidance or offers identity protection services, affected individuals should follow those instructions promptly.

For more information about the company or to check for official updates, visit the Pdi Health website.