Med-Care Infusion Services, Inc.

Med-Care Infusion Services, Inc. is a United States-based specialty pharmacy. The organization's core business involves the provision of infusion therapies, a service typically focused on delivering complex, high-cost medications, often for chronic or rare conditions, directly to patients in home or outpatient settings. This places it within the specialized segment of the pharmaceutical supply chain, requiring coordination with physicians, insurers, and patients. The company's operational scope and specific markets served, such as particular therapeutic areas or geographic regions within the U.S., are not detailed in the available information. Its identity is primarily established through its operational role and a significant security incident.

The organization is publicly known almost exclusively due to a ransomware attack it suffered on October 16, 2020. The threat actors responsible were the DoppelPaymer gang, a group known for employing double extortion tactics. In this incident, the attackers not only encrypted the company's systems but also exfiltrated data prior to deployment. They subsequently listed Med-Care Infusion Services on their dedicated public leak site, a common practice intended to pressure victims into paying a ransom by threatening to publish stolen information. As proof of their claimed access, the actors posted two documents on the leak site, which were described at the time as non-sensitive. A critical detail from the reporting is that no personally identifiable information or protected health information was confirmed to be present in those publicly posted materials. The company's response to the incident was notably absent; it did not reply to multiple inquiries from reporters and had issued no public notifications or warnings to patients or partners regarding the breach at the time the incident was documented. This lack of communication is a distinguishing attribute of its public record. No information is available regarding the company's ownership structure, whether it is an independent entity or a subsidiary, its employee count, revenue, or specific regulatory affiliations beyond the inherent requirements of operating a pharmacy in the United States. The incident report remains the sole detailed source of public information concerning the organization's operations and challenges.