apderm.com 2025 Data Breach

APDerm Dermatology Practice Network Breach (2025): Patient SSN Exposed | ObscureIQ
ObscureIQ Breach Intelligence

Classification Tags

QilinMedicalEmail AddressPhone NumberSocial Security Number
High SeverityWebsite / service breach

APDerm Dermatology Practice Network Breach (2025): Patient SSN Exposed

Dermatology practice management group and skin care provider.

Verified by ObscureIQ Intelligence
82/100Breach Risk Index
22Data Value
60Market Recency
127dSince Breach

Breach Intelligence Summary

Entity: apderm.com · Actor: Qilin · Sources: 2 references
Attack: Unknown
Profile: Healthcare Provider · Dermatology and skin care services · Dermatology practice network · USA
Timeline: Breach (2025-08-13) · Indexed (Dec 21, 2025) · Year (2025)
Exposure: 28K records · 3 fields: Email Address, Phone Number, Social Security Number
Status: Reported

Executive Summary

APDerm, the New England-based dermatology practice management network operating Adult & Pediatric Dermatology, P.C., and a portfolio of affiliated brands, was named on August 19, 2025 as a victim of the Qilin ransomware operation. The threat actor listed APDerm on its dark-web leak site, and the breach surfaced publicly through dark-web monitoring services in December 2025. Class-action investigations by U.S. plaintiff law firms began organizing shortly afterward.\n\nThe breach affected approximately 28,000 individuals. Compromised fields in the public disclosure included email addresses, phone numbers, and Social Security numbers. As a multi-brand dermatology practice network, the underlying records exfiltrated by the attackers also include identity, insurance, billing, and dermatologic diagnostic and treatment information typical of a specialty healthcare provider, beyond the more limited field set surfaced publicly.\n\nFor affected patients, the practical risk profile combines identity-fraud exposure with dermatology-specific risks. The combination of name, phone number, and Social Security number is a strong base for synthetic identity fraud, fraudulent credit applications, and identity-verification bypass. Inclusion in the dataset confirms the existence of a dermatology care relationship with one of the APDerm brands, which can support medical-themed scams referencing real treatments, biopsies, or insurance claims. Patients of pediatric dermatology services are a particular concern because children's identity data is durably exposed and is often the basis for child-identity fraud that can go undetected for years. Affected patients should freeze credit at all three U.S. bureaus, monitor health-insurance statements, and treat unsolicited contact referencing APDerm or any partner brand with caution.

ObscureIQ assessment: High risk of identity theft, medical fraud, and privacy harm tied to specialty treatment data. Networked practices also create broader scale for phishing and insurance abuse.

Breach Impact

APDerm faces significant institutional exposure given its network scale and the prior HIPAA enforcement history. Federal HIPAA notification obligations, an Office for Civil Rights review, multistate attorney-general filings, and active class-action investigations create a substantial compliance and litigation pipeline. The 2014 photocopier-breach settlement establishes that HHS has a documented enforcement relationship with the practice, which can affect how regulators view subsequent incidents. The reputational impact concentrates within the New England dermatology market, where APDerm has been a leading multi-brand network for three decades. Operationally, the practice continues to provide patient care across its network locations.

About apderm.com

APDerm, formally Adult & Pediatric Dermatology, P.C., is a U.S.-based dermatology practice management group headquartered in Acton, Massachusetts. Founded in 1992 and backed by private equity firm Waud Capital Partners, APDerm operates as a network of physician-led dermatology practices across New England, with clinical locations spread across Massachusetts and New Hampshire. The network includes more than a dozen partner brands such as Adult & Pediatric Dermatology, Boston Dermatology and Laser Center, Mystic Valley Dermatology Associates, Coastal Dermatology, and Pioneer Valley Dermatology. Across the network, APDerm provides medical, surgical, cosmetic, and pediatric dermatology services. As a HIPAA-covered specialty healthcare network, APDerm holds substantial volumes of protected health information including patient identity, insurance, billing, diagnostic, and dermatologic treatment records.

Why They Hold Your Data

Dermatology practice networks collect patient identity, contact, insurance, billing, appointment, and treatment records across multi-location specialty care operations.

Recent Developments

APDerm was named on August 19, 2025 as a victim of the Qilin ransomware operation, with the breach surfacing publicly on dark-web monitoring sites in December 2025. The practice has not extensively detailed the incident in public statements as of this writing. U.S. plaintiff law firms began organizing class-action investigations following the December 2025 surfacing. APDerm has a separate prior history with HIPAA enforcement: the practice paid a $150,000 settlement to the U.S. Department of Health and Human Services in 2013–2014 over an unrelated photocopier-disposal breach involving 2,200 individuals. The 2025 incident is a distinct event involving a different threat-actor pathway.

Data Points Exposed

3 verified field types
Email Address
Phone Number
Social Security Number Critical

Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.

Exploitation & Downstream Threats

Threat Activity:High
Primary downstream threats:
  • Identity theft and synthetic identity construction using government-issued IDs
  • SIM swap attacks where phone numbers are present
  • Targeted phishing campaigns using exposed email addresses
Threat vectors:
  • Phishing, credential stuffing & account takeover
  • SIM swapping, vishing & SMS phishing
  • Full identity theft & synthetic identity fraud

Threat Actor: Qilin

Qilin
Unknown

Attribution and method are based on available breach intelligence. Reported attack vector: Unknown.

Recommended Actions

If you believe your information may be included:

Protect Your ID Documents
Government-ID exposure enables document fraud — monitor and report misuse.
IdentityTheft.gov
Enable MFA Everywhere
Turn on multi-factor authentication on email first, then financial accounts.
Find 2FA settings
Report & Recover
If you spot misuse, start an official recovery plan and report fraud.
IdentityTheft.govReport to FTC

Frequently Asked Questions

What happened in the apderm.com breach?

APDerm, the New England-based dermatology practice management network operating Adult & Pediatric Dermatology, P.C., and a portfolio of affiliated brands, was named on August 19, 2025 as a victim of the Qilin ransomware operation. The threat actor listed APDerm on its dark-web leak site, and the…

What data was exposed?

Verified fields include Email Address, Phone Number, Social Security Number.

What should I do if I was affected?

Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.

Sources & References

Every claim on this page is traceable. This breach draws on:

Breach Index
DataBreach.com
Record & field corroboration
ObscureIQ Intelligence
ObscureIQ proprietary analysis
Risk Index scoring & downstream-threat assessment

Protect Yourself

Check If You're Affected

Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.

Get Free Breach Alerts

Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.

High-Risk? Get an Exposure Audit

Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.

Request Consultation