On April 12, 2025, the kidney dialysis service provider DaVita discovered they had been infiltrated by a ransomware attack. Despite taking immediate action, DaVita disclosed that the attack encrypted parts of their network and was affecting operations. However, it is because of their quick response that all their dialysis centers have been able to stay open and continue to serve patients. While not the best outcome, DaVita’s response to this ransomware attack has minimized the consequences so far. Continue reading to learn how DaVita utilized ransomware protection and how these practices can be applied to your business as well.
Isolate Impacted Devices After an Attack
As soon as the ransomware attack was discovered, DaVita isolated the affected devices to prevent the malware from spreading. This step includes disconnecting the device from the internet, unplugging network cables, and turning off any Wi-Fi and Bluetooth connections. Avoid powering down infected devices unless you are unable to disconnect them from the shared network. Shutting down devices could erase logs used to investigate how the ransomware attack occurred which is vital to preventing these cyberattacks in the future. Continue to isolate compromised devices by taking shared drives offline and monitoring the ransomware’s encryption of your data. This way you can protect your uncompromised systems and prevent the malware from spreading further.
Have a Strong Backup Strategy
In DaVita’s Securities and Exchange Commission 8K filing, they stated, “Given the recency of the incident, our investigation and response are ongoing, and the full scope, nature, and potential ultimate impact on the Company are not yet known.” Despite not yet knowing how much, if any, sensitive data was stolen, DaVita has already implemented their backup strategy so they can continue with as many of their daily operations as possible.
No matter how large or small your business is, you must have a strong backup strategy in place to combat the impacts of a ransomware attack. This type of malware typically steals sensitive data and demands payment for you to regain access to it. There is no guarantee you will retrieve your data after paying the ransom, but either way your operations will be drastically disrupted. To mitigate the pain of a ransomware attack, create backups of your important data you can easily access in case of an emergency. Follow the 3-2-1 rule and create three data backups, store them in at least two different locations, and keep at least one copy offline. Remember to regularly update these backups so you always have the latest data needed to run your business, even if your main systems have been compromised.
Contact the Professionals
DaVita Inc. may be a large enterprise with countless resources, but even they weren’t impenetrable to a ransomware attack. Yet, when this malware infiltrated their systems, they immediately called for help. The dialysis service provider is currently working with undisclosed third-party cybersecurity professionals to investigate and combat the impact of this recent ransomware attack. No matter the size of your business, you can also benefit from working with a cybersecurity expert. They will ensure you always have the latest ransomware protection measures in place and monitor for suspicious activity in your systems. And if a ransomware attack does result in a data breach, cybersecurity experts will be able to identify the vulnerabilities in your system that were exploited and make the necessary fixes.
Cybersecurity professionals were not the only ones DaVita contacted after the ransomware attack. Law enforcement was also notified. When businesses, cybersecurity professionals, and law enforcement work together you can better secure your systems. Reporting ransomware attacks also helps track and disrupt cybercriminal networks as well as protect other organizations from similar threats. This also shows a commitment to transparency and compliance, which can build trust with customers, partners, and regulators. Staying silent may seem like a way to protect reputation, but it can actually make your business more vulnerable in the long run.
Train All Employees on Cybersecurity
Cybersecurity professionals don’t just monitor your devices for ransomware attacks; they can also train your employees on how to spot these malicious actors. Every employee should have the knowledge and tools to stop ransomware attacks. They can obtain this power through comprehensive cybersecurity training. All staff should be educated on the various types of ransomware attacks and how they infiltrate businesses through phishing emails, malicious attachments, and compromised websites. Employees should also be encouraged to report any suspicious activity, especially if they think they inadvertently enabled a ransomware attack. This way businesses like DaVita Inc. can act quickly and minimize the damage of these cyberattacks.
Benefits of Managed Cybersecurity
Protecting any business from ransomware attacks takes constant vigilance. You need to watch out for suspicious communication and login attempts, as well as any vulnerabilities in your network. For small to medium sized businesses, this can take up valuable time from non-IT personnel. Managed cybersecurity services, like the ones offered by Strategy IT, ensures all of the best security practices are being implemented while you can focus on your business. Our IT professionals use the latest antivirus software and cybersecurity practices to keep ransomware out of your systems.
Stay Up to Date on the Latest Ransomware Protection Measures
The DaVita ransomware attack is a stark reminder that no organization, no matter how large or established, is immune to cyber threats. Proactive education, employee training, and layered defenses are essential parts of ransomware protection, but there’s even more you can do to keep your business secure. Sign up for our free e-course to receive weekly lessons on how to strengthen your cybersecurity measures and defend against the growing number of ransomware attacks.
