Cyber Incident Victim: Suncoast Skin Solutions

On July 14, 2021, Suncoast Skin Solutions, a Florida-based network of 22 dermatological care clinics, detected a ransomware attack targeting its systems. The organization immediately implemented containment measures to prevent full encryption of its infrastructure and engaged a third-party cybersecurity firm to conduct a forensic investigation. This investigation aimed to determine the attack's origin, methods, and scope. The cybersecurity firm completed its forensic analysis on October 14, 2021, after three months of examination. Suncoast then initiated an internal review of its systems to identify whether patient information had been accessed or compromised during the breach. This preliminary system review concluded on November 8, 2021, confirming that unauthorized actors had potentially accessed sensitive data. The organization subsequently contracted a specialized third-party vendor to conduct granular file analysis across affected systems, a process necessary to identify precisely which individuals had their information exposed.

The compromised data included patient names, dates of birth, clinical information, physician notes, and limited treatment details. Suncoast explicitly stated it found no evidence of attempted or actual misuse of the stolen patient data following the breach. In response to the incident, the organization implemented enhanced security protocols, most notably migrating all patient records to an encrypted storage system to reduce future vulnerability. As a remedial measure, Suncoast offered complimentary credit monitoring services to a subset of affected individuals deemed at higher risk of potential identity theft or fraud. The breach impacted 57,730 patients, whose notifications began in early 2022 following the completion of all investigative and file review phases. No technical specifics regarding the ransomware variant, initial attack vector, or duration of unauthorized access prior to detection were disclosed in public reporting.