Large Data Breach at Virginia Medical Billing Company

Author

Taylor Hawes
January 26, 2026

๐Ÿ”Ž Cyber Watch ๐Ÿ”Ž

Large Data Breach at Virginia Medical Billing Company

A medical billing company in Virginia called Avosina Healthcare Solutions told more than 42,000 people that attackers accessed their data in a breach from July 2025. Names, addresses, medical details, and insurance information were exposed. Security researchers link the incident to the Qilin ransomware group, although Avosina has not confirmed ransom payment or how the breach happened. Affected people can sign up for free credit monitoring with a $1 million identity theft insurance offer. Comparitech tracked this as one of many recent cyberattacks on healthcare service firms.

Key takeaway

  • A Virginia medical billing company reported a data breach affecting about 42,000 people.

  • Exposed data includes personal details, medical information, and insurance data, which carry high misuse risk.

  • The Qilin ransomware group claimed the attack, part of a wider trend targeting healthcare vendors.

  • Affected individuals were offered free credit monitoring and identity theft protection.

๐ŸŽ™๏ธ Tech Briefing Onโ€‘Air ๐ŸŽ™๏ธ

Words as Weapons

This episode looks at how human communication affects AI behavior and security. Experts explain that tone, phrasing, and intent can change how AI responds and how safe it remains. Normal language can improve results, but it can also be misused to exploit systems. As AI becomes part of daily work, teams must treat it as a system that needs testing, limits, and oversight. Awareness of how people interact with AI is now a core security concern.

Takeaways

  • Human tone and wording can improve or weaken AI performance.

  • Everyday language can be used by attackers for prompt injection.

  • Polite or hostile prompts can expose hidden risks in AI systems.

  • AI should be treated as a new team member that needs controls and regular testing.

๐Ÿค Partner Intel ๐Ÿค

NinjaOne

NinjaOne is an IT management platform that helps teams monitor and manage devices from a central console. It began as a remote monitoring tool and now includes features such as endpoint management, patching, data protection, automation, and integrations with other IT tools. The platform is known for its easy-to-use interface and ability to automate routine tasks, which can save time for IT teams. Over the years NinjaOne has expanded to serve thousands of customers in many countries.

๐Ÿค– AI Runtime ๐Ÿค–

Congress Warns of AI-Powered Cyber Threats Before Major Events

A U.S. congressional hearing flagged rising cyber threats that use artificial intelligence. Lawmakers said AI could help attackers scale operations and target major events such as the 2026 FIFA World Cup and 2028 Olympics. These attacks are no longer only digital but can affect physical systems linked to transport, energy, and other infrastructure. The session stressed that defence now needs cross-sector cooperation, AI governance, and greater resilience rather than only traditional security tools.

๐Ÿ“Š By the Numbers ๐Ÿ“Š

2,027

On average, businesses endured approximately 2,027 cyber attacks per week in 2025.

๐Ÿ—ณ๏ธ Your Monday Take ๐Ÿ—ณ๏ธ

Cast your vote on our weekly poll.

Which type of AI-assisted cyber threat do you believe will be most disruptive to critical services over the next two years?

Login or Subscribe to participate in polls.

๐Ÿ“ฉ Weโ€™ll share the results in the Friday issue.

Advertise with Comparitech
Does your business offer services or products in cybersecurity? Get your product seen by IT leaders and professionals.

Advertise with us โ†’

Until Fridayโ€™s edition - Letโ€™s keep that zero-day count at zero!