The Vascular Center of Intervention

The Vascular Center of Intervention, also known as VCI, is a United States-based healthcare organization specializing in vascular intervention services. Headquartered in the USA, the center provides medical care focused on diagnosing and treating vascular conditions. On February 25, 2023, VCI experienced a network security incident involving unauthorized access to its systems and the exfiltration of patient files. The BianLian cyber extortion group claimed responsibility for the attack, stating they had stolen 200 GB of data from the organization. Following the theft, BianLian added VCI to its public leak site, a common tactic in data extortion schemes. This incident directly impacted the confidentiality of patient information held by the medical center.

The compromised data included sensitive medical histories, specific treatment details, and personally identifiable information such as Social Security Numbers. The exfiltration represented a significant breach of confidential patient records. In response to the security incident, VCI offered credit monitoring services to the affected individuals. The breach highlighted the targeting of healthcare entities for the valuable personal and medical data they maintain. The incident is a documented event in the organization's recent operational history, illustrating the cybersecurity challenges faced by medical service providers.