Vitenas Cosmetic Surgery Data Breach Affects Over 30 Thousand Americans

On March 3, 2025, Vitenas Cosmetic Surgery, PA, based in Houston, Texas, experienced a data breach involving ransomware. The breach was carried out by the cybercriminal group known as Kairos, who claimed responsibility for the attack on the dark web. According to the group's posting on the Tor network, Kairos successfully accessed and extracted approximately 734 GB of sensitive data from the company's database. The hackers threatened to publish the stolen data within 7-8 days if their demands were not met.

The compromised information included personally identifiable information (PII) and protected health information (PHI) of patients consisting of individuals' names, Social Security numbers, driver's license numbers, and medical information.

According to a disclosures filed with the Texas and Maine Attorneys Generals' offices on April 10 and 11 of 2025, the breach impacted 31,852 Americans, including 30,000 Texas residents. This disclosure indicates the severity of the breach, as a large number of individuals had sensitive personal and medical information exposed. The official disclosure can be viewed on the Texas Attorney General's data security breach reports page.

Vitenas Cosmetic Surgery notified affected individuals of the breach through multiple channels, including direct U.S. mail, email, and by posting information on the company's official website. Patients who received notification should carefully review the details provided to understand the specific information that may have been compromised.

Vitenas Cosmetic Surgery's response

Patients affected by this breach should monitor their financial accounts and credit reports closely for any suspicious activity. It is advisable to consider placing a fraud alert or credit freeze on your credit file, which can help prevent unauthorized credit activities. Additionally, affected individuals should be vigilant about potential phishing scams or suspicious communications claiming to be from Vitenas Cosmetic Surgery or other organizations.

For further information, patients can visit the Vitenas Cosmetic Surgery official website at drvitenas.com, where updates about the breach and guidance for affected individuals are posted.