The InterLock ransomware leak site recently added Texas Digestive Specialists to its listings, claiming to have exfiltrated (and leaked) 263 GB of data consisting of 16,920 folders with 215,245 files.
Finding no indication of anything amiss or any breach disclosure on the medical group’s website, DataBreaches sampled selectively from the data tranche. We noticed evidence that InterLock had encrypted files and that many of files with protected health information (PHI) were .pdf files with lab pathology reports.
Lab reports contained the patient’s name, date of birth, date of testing, relevant history, and findings. In one compressed archive, DataBreaches found more than 20,000 such reports from approximately August, 2023 to early 2025. Another archive consisted of 375 pages of pathology reports on named patients from part of 2024.
All of the lab reports described above were on Texas Digestive Specialists’ letterhead. And those were just two of the leaked files in the data tranche.
Texas Digestive Specialists offers medical and surgical services to adults and children, with three locations throughout Texas. DataBreaches sent a contact form inquiry to Texas Digestive Specialists yesterday, inquiring about their response to what appeared to be a ransomware attack. No reply was immediately available. As of publication, there is no report by Texas Digestive Specialists on HHS’s public breach tool or the Texas Attorney General’s public breach tool, so we do not yet know when this breach allegedly occurred, when it was first discovered by the victim, whether the victim has confirmed the breach, and how many patients have been affected.
This post will be updated if a reply is received.