HQ/EMEAFind out how we can help your business
DaVita, a kidney dialysis company, announced that it experienced a ransomware attack over the weekend.
Based on reports, the alleged attack encrypted parts of its network and disrupted some of its operations. As one of the leading kidney care providers in the U.S., the firm operates more than 2,600 outpatient centres that deliver dialysis services to kidney disease patients.
Moreover, the company is part of the Fortune 500, employing 76,000 individuals across 12 countries and reporting annual revenues exceeding $12.8 billion.
In an SEC FORM-8K filing issued earlier this week, DaVita revealed that it fell victim to the attack over the weekend, which encrypted specific systems in its network. Researchers noted that ransomware operators launch encryption attacks on weekends since they typically capitalise on reduced staffing among IT teams.
The filing specified that on April 12, 2025, DaVita Inc. acknowledged a ransomware incident that compromised parts of its network.
DaVita immediately deployed necessary procedures to address the newly discovered cybersecurity issue.
After identifying the attack, DaVita initiated its response protocols and began efforts to contain the situation, such as proactively isolating the affected systems.
The attack and subsequent measures have disrupted some operations. Although interim solutions are in place to aid recovery, a timeline for complete restoration remains uncertain. Nevertheless, the firm assures the public that patient care is ongoing at its facilities.
The company stated that an assessment of the issue is currently underway, and a thorough evaluation of the incident’s impact is still pending. This investigation examines the possibility of patient data theft from compromised systems—a common strategy used by ransomware attackers during the extortion phase.
Currently, there are no updates on DaVita’s website or social media about problems at its dialysis centres, and the company confirms that patient care is ongoing. DaVita has activated its contingency plans and is consistently delivering patient care. Finally, no significant ransomware groups have taken responsibility for the attack on DaVita.
