MedImpact, a major U.S.-based pharmacy benefit manager (PBM) and healthcare solutions provider, suffered a ransomware attack attributed to the Russian-based group Qilin. The incident prompted immediate protective measures from affiliated entities like Security Health Plan, which assured patients that their personal information remained secure and that care disruptions were minimized. Qilin, known for high-profile ransomware campaigns, has claimed over 700 attacks in 2025 alone, signaling a persistent and escalating threat to healthcare infrastructure. While MedImpact’s statement did not confirm data exfiltration, the involvement of a prolific ransomware group raises concerns about potential exposure of sensitive patient data, including prescription records, personal identifiers, or financial details tied to pharmacy benefits. The attack underscores vulnerabilities in third-party healthcare vendors, which serve as critical but often targeted links in the supply chain. Recovery efforts likely involved containment, forensic analysis, and coordination with cybersecurity firms to mitigate risks of further exploitation or regulatory penalties under HIPAA or other data protection laws.