The Kazu ransomware group is claiming responsibility for an alleged cyberattack against WELL Health Kensington Medical Centres, a Canadian primary care clinic operated by WELL Health Technologies. The group claims to have stolen personal information belonging to 307,133 patients and is attempting to extort the organization.
Kazu published the alleged breach on a cybercrime forum on June 28. BreachNews also identified WELL Health Kensington Medical Centres on the group’s data leak site, where it is listed alongside a claimed ransom demand of $70,000 and 307,133 patient records.
Kazu issues ransom deadline
According to the post, Kazu is demanding a $70,000 ransom and claims WELL Health has until July 13, 2026, to pay. The group alleges that if the ransom is not paid before the deadline, it will begin selling the stolen data.
Kazu also published links to purported sample data intended to support its claims. BreachNews is not reproducing or linking to any alleged leaked material.
WELL Health Medical Centres – Kensington is a community medical clinic that provides family medicine, same-day appointments, virtual care, preventive health services, and specialist referrals. Founded in 1991, the clinic now operates as part of WELL Health Technologies.
Patient information could carry significant risk
If confirmed, the alleged breach could expose affected patients to identity theft, medical fraud, phishing campaigns, and other targeted attacks. Healthcare organizations remain frequent ransomware targets because of the sensitivity of patient information and the operational disruption these incidents can cause.
The alleged attack follows an ongoing trend of ransomware groups attempting to pressure healthcare providers through public extortion, threatening to publish or sell allegedly stolen data if ransom demands are not met. Healthcare organizations remain frequent targets because they hold large volumes of sensitive patient information and often face pressure to restore operations quickly. Patients affected by incidents like this may face risks including identity theft, medical fraud, and phishing attempts if personal information is exposed. Back in may, NYC Health + Hospitals disclosed a breach affecting 1.8 million people, underscoring the continued cybersecurity challenges facing the healthcare sector.
Company has not commented
WELL Health had not issued any public statement at time of publication regarding Kazu’s claims.
BreachNews will post an update if WELL Health confirms the incident, disputes the claims, or additional evidence becomes available.
