.png)
SimonMed Imaging Data Breach Investigation
Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the SimonMed Imaging data breach which has impacted 1,275,669 Americans.
If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.
About SimonMed Imaging
SimonMed Imaging is an outpatient medical imaging provider and physician radiology practice. Established in 2003, SimonMed operates more than 160 accredited imaging facilities across 11 states.
The company employs approximately 974 individuals and provides a variety of diagnostic imaging services, including MRI, CT scans, ultrasound, mammography, PET/CT, nuclear medicine, DEXA, and X-rays.
What was the January Ransomware Attack?
On January 27, 2025, SimonMed Imaging was notified by one of its vendors about a security incident. The following day, January 28, 2025, SimonMed identified suspicious activity on its own network. An investigation revealed unauthorized access to SimonMed's systems occurred between January 21 and February 5, 2025.
The cyberattack was carried out by a ransomware group known as MEDUSA. This group claims to have stolen approximately 212.616 GB of data from SimonMed Imaging's systems and has threatened to publish the stolen information on the dark web within 14-15 days.
SimonMed disclosed the cyberattack to the U.S. Department of Health and Human Services on March 27, 2025 and began notifying impacted individuals by mail in Oct. 2025. According to reports, 1,275,669 individuals were impacted by the breach.
Information Exposed:
- Name
- Address
- Birthdate
- Social Security number
- Driver’s license or state ID number
- Dates of medical service
- Provider names
- Medical record number
- Patient number
- Medical conditions, diagnoses, and/or treatment information
- Medication details
- Medical imaging
- Health insurance information
- Financial account information
- Authentication credentials
- Biometric identifiers
The data breach was also reported to the California, Maine, Texas, Massachusetts and Vermont Attorney Generals' offices beginning on on Oct. 10, 2025. SimonMed also published a Notice of Data Incident on its own website.
Your Rights and Next Steps
If your personal information was exposed in the SimonMed Imaging data breach, you have important rights and options. You may be entitled to seek compensation for any harm or inconvenience caused by this cybersecurity incident.
- Identity theft protection services: Enroll in the free Experian IdentityWorks credit monitoring and identity restoration services, offered by SimonMed.
- Monitor your accounts carefully: Check your financial statements regularly for suspicious activity or unauthorized transactions. If you notice anything unusual, contact your financial institution immediately.
- Fraud alert and credit reports: A fraud alert informs creditors to take extra steps to verify your identity before opening new accounts in your name. Consumers are also entitled to one free credit report annually from each credit bureau. You can request a fraud alert or a credit report by contacting any one of the three major credit bureaus.
- Seek legal help: Lawyers are ready to help you understand your rights and pursue compensation.
You May Be Entitled to Compensation
If your information was compromised in the SimonMed Imaging data breach, you may be eligible for compensation. This could include reimbursement for out-of-pocket expenses, time spent addressing the breach, or payment for emotional distress.
To find out if you qualify to pursue a monetary claim, complete the form below. Lawyers will review your case and help you understand your legal options.
.svg)