Back

Rocky Mountain Care Faces Data Breach from Qilin Ransomware Attack

Severity: Medium (Score: 51.9)

Sources: Classaction, Claimdepot

Summary

Rocky Mountain Care, a healthcare provider in Utah, reported a data breach following unauthorized access by the Qilin Ransomware group. The breach occurred between January 30 and February 2, 2026, and was publicly disclosed on March 27, 2026. The attackers threatened to publish the stolen data on February 23 if their ransom demands were not met. The extent of the compromised data, including whether Protected Health Information (PHI) was involved, is still under investigation. Rocky Mountain Care has engaged third-party cybersecurity specialists to assist with the investigation and has set up a dedicated assistance line for affected individuals. Attorneys are exploring the possibility of a class action lawsuit for those impacted by the breach. The company has not disclosed whether it paid the ransom. Individuals are advised to monitor their accounts for suspicious activity and utilize available consumer protections. Key Points: • Rocky Mountain Care experienced a data breach linked to the Qilin Ransomware group. • The breach occurred between January 30 and February 2, 2026, with public disclosure on March 27. • Attorneys are investigating potential class action lawsuits for affected individuals.

Key Entities

  • Data Breach (attack_type)
  • Ransomware (attack_type)
  • Rocky Mountain Care (company)
  • classaction.org (domain)
  • identitytheft.gov (domain)
  • Healthcare (industry)
  • T1567.002 - Exfiltration to Cloud Storage (mitre_attack)
  • Qilin (ransomware_group)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed