> Back to All Posts

Texas Medical School Notifies 1.5 Million People of Data Breaches Affecting Sensitive Information

Texas Tech University Health Sciences Center (TTUHSC) has revealed two significant data breaches, impacting nearly 1.5 million individuals. These incidents, which occurred in September, compromised personal, financial, and medical information, causing widespread concern among those affected.

The breaches targeted two campuses: the main TTUHSC campus in Lubbock, where 650,000 individuals were affected, and the El Paso branch, which involved 815,000 individuals.

Details of the Compromised Data

The breaches exposed a wide range of sensitive information. Victims’ names, Social Security numbers, financial account details, health insurance information, medical record numbers, billing and claims data, and even diagnoses and treatment details were accessed. Additionally, addresses, dates of birth, and government-issued identification numbers were included in the compromised records.

A ransomware group known as Interlock has claimed responsibility for the breaches. It stated that it had stolen 3.2 TB of data, going so far as to publish some documents on its leak site. However, TTUHSC has neither verified Interlock’s claims nor disclosed whether a ransom was paid. The ongoing investigation has limited the school’s ability to provide further details at this time.

Operational Impact Across Campuses

The breaches disrupted operations across multiple TTUHSC campuses, including those in Amarillo, Abilene, El Paso, Dallas, and the Permian Basin. For instance, classes were canceled, and Texas Tech Physicians experienced communication outages, including phone lines and its patient portal. Although classes resumed on October 16, other services like email systems remained down for more than a month, further complicating the recovery process.

TTUHSC informed victims that the breaches occurred between September 17 and September 29, 2024, during a significant cybersecurity event. To mitigate the potential impact on victims, the institution is offering free credit monitoring services.

Interlock: A Rising Ransomware Threat

Interlock, a relatively new player in the ransomware landscape, has gained attention since October 2024. Researchers have confirmed at least four attacks linked to the group, including those targeting Winnebago Public Schools, Wayne County local government in Michigan, and Italian manufacturer Smeg Group. While Interlock has claimed additional attacks, the victims have not publicly acknowledged these incidents.

The Growing Risks of Ransomware in Key Sectors

Ransomware attacks on healthcare and educational institutions have become increasingly common. These attacks often cripple essential systems, forcing healthcare providers to delay or divert patient care. In many cases, billing, payroll, and appointment systems also become inoperable, compounding the challenges for affected organizations. Furthermore, educational institutions frequently face canceled classes and interruptions to grading and communication systems.

During 2024, Comparitech tracked 137 ransomware attacks targeting US healthcare organizations. Similarly, 65 attacks on schools and universities were confirmed. Notably, the TTUHSC breach represents the largest attack on an educational institution by the number of records compromised this year and ranks as the sixth-largest incident involving a medical institution.

About TTUHSC

TTUHSC is a renowned institution, combining a university and hospital system that emphasizes biomedical and clinical research. It also leads Texas in graduating healthcare professionals, with over 28,000 alumni. The institution operates campuses in Amarillo, Lubbock, El Paso, Abilene, Midland, Odessa, and Dallas.

The TTUHSC data breaches underscore the urgency of strengthening cybersecurity measures, especially in sectors that handle vast amounts of sensitive data. As investigations proceed, this incident serves as a stark reminder of the vulnerabilities inherent in digital systems and the far-reaching consequences of cyberattacks.

David McAfee

David McAfee is a seasoned cybersecurity expert with over a decade of experience at VPN Group. Specializing in online privacy and digital security, he has played a key role in developing advanced strategies to protect individuals and organizations from cyber threats.