Ransomware victim disclosure
← All victimsTexas Centers for Infectious Disease Associates
Claimed by BianLian · listed 2 years ago
Status timeline
- ListedAug 14, 2024
- Data leakeddate unknown
At a glance
- Group
- BianLian
- Status
- Data leaked
- Country
- United States
- Sector
- Healthcare
- Listed on leak site
- Aug 14, 2024
About the victim
AI dossier — public-source company profileTexas Centers for Infectious Disease Associates (TCIDA) is a private infectious disease medical group founded in 1997 serving the Dallas-Fort Worth metroplex. The practice operates clinical offices, infusion centers, and an in-house pharmacy across Fort Worth and Dallas locations, offering services including clinical infectious diseases, transplant infectious diseases, HIV care, bone and joint infections, and travel medicine.
- Industry
- Healthcare — Infectious Disease Medical Practice
- Address
- Fort Worth, Texas and Dallas, Texas
- Employees
- 51-200
- Founded
- 1997
Attack summary
Severity: critical — Healthcare provider with confirmed data exfiltration. Patient medical records and personal health information (PHI) constitute regulated sensitive data under HIPAA. Scale of patient base across two major metropolitan area clinics with multiple providers suggests significant volume of exposed records.BianLian claims to have compromised TCIDA and exfiltrated data from the organization. The group has published data from the breach on their leak site.
Data the group says was taken
AI dossier — extracted from the leak post- Patient medical records
- Personal health information
- Patient contact information
- Potentially insurance information
- Clinical documentation
What the group claims
TCIDA is a private infectious disease group serving the entire DFW metroplex - Dallas and Fort Worth - with brand new buildings in both cities, infusion centers in both cities, and its own pharmacy.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

