lockbit2 attacks vvrmc

Incident Date:

March 17, 2022

World map



lockbit2 attacks vvrmc






Del Rio, USA

Texas, USA

First Reported

March 17, 2022

Val Verde Regional Medical Center Targeted by Lockbit2 Ransomware Group

Overview of the Attack

Val Verde Regional Medical Center (VVRMC), a healthcare provider located in Texas, recently fell victim to the Lockbit2 ransomware group. This incident was disclosed via a dark web leak site. The attack compromised a significant amount of sensitive data, including patient names, Social Security numbers, dates of birth, medical information, health insurance details, and more.

In response to this security breach, VVRMC has enhanced its cybersecurity defenses to mitigate the risk of future incidents. The medical center's official website offers insights into their services and initiatives aimed at promoting health and wellness within the community.

The Lockbit2 Ransomware Group

Lockbit2 is notorious for its cyberattacks on organizations across the globe, leading to significant data breaches and operational disruptions. This group's activities underscore a growing trend of cybercriminals targeting the healthcare sector, exploiting the wealth of sensitive data these institutions manage.

Vulnerability of the Healthcare Sector

The healthcare industry's reliance on digital records and the intrinsic value of personal health information make it a prime target for cyberattacks. The breach at VVRMC highlights the sector's vulnerabilities and the potential consequences of such security incidents. Despite ongoing efforts by law enforcement and cybersecurity firms to counteract ransomware operations, the threat persists, necessitating continuous vigilance and comprehensive security strategies from healthcare providers.


As cyber threats continue to evolve, it is imperative for organizations, especially those in the healthcare sector, to prioritize and strengthen their cybersecurity measures. The attack on Val Verde Regional Medical Center serves as a stark reminder of the risks associated with handling sensitive data and the importance of safeguarding against such vulnerabilities.


  • Val Verde Regional Medical Center. (n.d.). Val Verde Regional Medical Center.
  • KonBriefing.com. (2022, March 31). After Hive cyberattack, Partnership HealthPlan confirms data theft affecting 855k. Retrieved April 10, 2024, from SC Magazine.

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.