Bayhealth Medical Center Data Breach Claimed by Rhysida, Announced in Consumer Notice 

• Bayhealth data breach claimed last year by threat actors has been announced by the healthcare in a consumer notice.
• Rhysida ransomware group threatened to expose stolen data in August.
• The hacker exfiltrated names and protected health information between July 27 and July 31, 2024.

Bayhealth Medical Center filed a data breach notification with the Office of the Maine Attorney General. The incident occurred on July 27, 2024 and was discovered on July 31, 2024. 

The Bayhealth Medical Center data breach impacted 257 Maine residents, the notice read. A hacker breached an external system and stole names and other personal information. 

The healthcare company situated at Delaware posted a consumer notification on February 3, 2025 that mentioned suspicious activity on its network between July 27 and July 31, 2024. Further investigations confirmed that Protected Health Information was copied by hackers. 

A notice posted on the healthcare company’s website read, “The files included information used for the operation of Bayhealth facilities.” It further added that Social Security numbers, medical information and health insurance data was also likely accessed by hackers.

The Bayhealth data breach was claimed by the Rhysida ransomware group last year. They posted samples of stolen passports and ID cards on their dark web portal and threatened to publicly release all the exfiltrated data if their ransom demands were not met within a week.

This year, the group also claimed that they targeted the U.S. Carthage Texas Police department and Pembina Trails School Division that serves over 35 schools.

They tried to extort the Carthage Police department with a ransom of $500,000 or 5 BTC.