Pittsburgh Gastro Associates Hit by Ransomware Attack

Pittsburgh Gastroenterology Associates, a medical group specializing in digestive health, experienced a major data breach. On Aug. 20, 2025, the practice was listed as a victim of a ransomware attack by the Sinobi group on a Tor-based dark web leak site.

According to the posting, Sinobi claims to have gained unauthorized access to the organization’s systems and exfiltrated sensitive data. Ransomware actors like Sinobi typically threaten to publish or sell stolen data if their demands are not met. This increases the risk of identity theft, fraud, and potential misuse of medical information.

Cybersecurity incidents involving ransomware attacks often involve patient data, including both personal and protected health information. Compromised information may include names, addresses, phone numbers, dates of birth, driver's license or state ID copies, Social security numbers, health insurance details, medical records and payment information including card numbers with CVV codes.

The total number of affected current and former patients and employees has not been released, but is believed to be in the thousands.

Pittsburgh Gastroenterology Associates’ response

Pittsburgh Gastroenterology Associates will be required to issue certain state and federal disclosures. The medical group will also work to identify and notify affected individuals by mail.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Pittsburgh Gastroenterology Associates .
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For more information about the medical group, visit the Pittsburgh Gastroenterology Associates website.