Sunflower Medical Group Data Breach Investigation

Shamis & Gentile P.A., one of the nation's premier class action law firms specializing in data breach cases, is investigating the Sunflower Medical Group, P.A. data breach.
If you were affected by the data breach, your sensitive personally identifiable information may have been exposed, and you may be eligible for compensation.
About Sunflower Medical Group, P.A.
Sunflower Medical Group, P.A. is a private multi-specialty medical group serving the Kansas City area, with locations in Johnson County and Wyandotte County, Kansas. They provide a range of healthcare services, including primary care, family medicine, internal medicine, pediatrics, obstetrics and gynecology, urgent care, and behavioral health counseling.
The group operates four main locations in Roeland Park, Lenexa West (Prairie Star), Kansas City, KS, and Lenexa East.
What was the January 2025 Ransomware Attack?
On January 7, 2025, Sunflower Medical Group discovered a data breach that potentially exposed sensitive consumer information. It has been disclosed that the breach affected 220,968 individuals across the United States, including 1,455 people affected in Texas, 52 in Massachusetts, and 36 individuals in Maine.
The same day, the ransomware group, RHYSIDA, posted Sunflower Medical's data for sale on the dark web, asking 10 Bitcoin for the entire dataset that allegedly included 400,000 pieces of sensitive personal information like driver's licenses, insurance cards, and social security numbers.
The dataset was reportedly in excesses of three terabytes of information. An investigation by Claim Depot was unable to determine if the ransomware group found a purchaser.
.png)
Information Exposed:
- PII
- Names
- Addresses
- Dates of birth
- Social Security numbers
- Driver’s license numbers
- PHI
- Medical information
- Health insurance information
The breach was disclosed to the Attorneys Generals' offices of California on March 8, 2025, Maine on March 9, 2025, and Vermont on March 10, 2025.
Your Rights and Next Steps
If you believe your information was exposed in this data breach, it is crucial to take immediate action to protect yourself. Here are some steps you can take:
- Monitor Your Accounts: Regularly check your bank and credit card statements for any unauthorized transactions.
- Credit Report Review: Obtain a free credit report and review it for any suspicious activity.
- Fraud Alerts: Consider placing a fraud alert on your credit file to notify creditors to take extra steps to verify your identity before extending credit.
- Identity Theft Protection: Consider enrolling in an identity theft protection service for additional monitoring and alerts.
You May Be Entitled to Compensation
If your personal information was compromised in the Sunflower Medical Group data breach, you may be entitled to compensation. Lawyers are ready to help you understand your rights and the potential for a class action lawsuit.
To explore your options, complete the form below to join the lawsuit and seek the compensation you deserve.