On November 18, 2022, Community Health Network (“Community”) filed notice of a data breach with the U.S. Department of Health and Human Services Office for Civil Rights (“HHS-OCR”) after learning that the organization’s use of third-party tracking technologies disclosed sensitive patient data to unauthorized parties. Based on the company’s filing with the HHS-OCR, the incident resulted in an unauthorized party gaining access to patients’ protected health information.

On November 21, 2022, Hope Health Systems, Inc. (“HHS”) filed notice of a data breach with the U.S. Department of Health and Human Services Office for Civil Rights experiencing what appears to have been a ransomware attack compromising sensitive patient data stored on the company’s computer network. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to patients’ names, addresses, dates

On November 14, 2022, Health Care Management Solutions, LLC (“HMS”) filed notice of a data breach with the U.S. Department of Health and Human Services Office for Civil Rights (“HHS-OCR”) after the company learned that an unauthorized party was able to access sensitive patient information stored on its computer network. While the HHS-OCR Data Breach Portal does not provide the specific type of data that was compromised,

On November 18, 2022, Wright & Filippis filed notice of a data breach with the U.S. Department of Health and Human Services Office for Civil Rights as well as the California Attorney General following a ransomware attack targeting the company’s computer network. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names, dates of birth, patient numbers, Social Security

On November 8, 2022, Mercyhurst University filed notice of a data breach with the Attorney General of Maine after the school discovered that an unauthorized party was able to access sensitive student information stored on its computer system. Based on the university’s official filing, the incident resulted in an unauthorized party gaining access to students’ names and Social Security numbers. After confirming that consumer data was

On November 9, 2022, GATE Petroleum Company filed notice of a data breach with the Maine Attorney General’s Office after the company learned that sensitive consumer information contained on its computer network was accessed by an unauthorized party—likely as a result of a cyberattack. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names and Social Security numbers.

On November 9, 2022, Doctors’ Center Hospital filed notice of a data breach with the U.S. Department of Health and Human Services, Office for Civil Rights, after an unauthorized party was able to access sensitive patient information that had been entrusted to the company. While Doctors’ Center Hospital has yet to post notice of the breach on its website explaining the incident, based on the company’s filing

On November 23, 2022, HomeTrust Mortgage, which does business under the name Home Mortgage of America, filed notice of a data breach with the Montana Attorney General after a ransomware attack compromised sensitive consumer information stored on the company’s computer system. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names, addresses and Social Security numbers. After confirming

On November 18, 2022, Gateway Rehabilitation Center filed notice of a data breach with the U.S. Department of Health and Human Services, Office for Civil Rights, as well as the Montana Attorney General’s Office, after the company learned it was the target of a recent cyberattack. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names, dates of birth,

On November 21, 2022, Receivables Performance Management LLC (“RPM”) filed notice of a data breach with the Attorney General of Maine after the company experienced a ransomware attack compromising sensitive consumer data in its possession. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ personal information, including their names and Social Security numbers. After confirming that consumer data

On November 8, 2022, Eagle Bank, Inc. (“Eagle Bank”) filed notice of a data breach with the Attorney General of Massachusetts after sensitive information placed in the company’s care was subject to access by an unauthorized party. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names, Social Security numbers, financial account numbers and driver’s license numbers. After

On November 8, 2022, Simmons Bank filed notice of a data breach with the Attorney General of California after the company learned that one of its vendors, Mayer Brown, experienced a data breach related to one of its vendors, AMS Collaborator. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names, addresses, Social Security numbers, and driver’s license

On November 15, 2022, Commonwealth Care Alliance of California (“CCA Health California”) filed notice of a data breach with the Attorney General of California after the company learned that an unauthorized party had gained access to sensitive consumer data stored on its computer system. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names, Social Security numbers, dates

On November 17, 2022, The Rosewood Corporation filed notice of a data breach with the Texas Attorney General after an unauthorized party gained access to sensitive information that had been entrusted to the company. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names, addresses, Social Security numbers, driver’s license numbers, government identification numbers, and health insurance information.

On November 16, 2022, AAA Collections, Inc. filed documents with the Attorney General of Montana reporting a data breach that compromised the sensitive consumer data contained on the company’s computer system. However, the company has yet to publicly disclose the type of information that was accessible to the unauthorized party as a result of the breach. That said, based on state data breach reporting requirements, it is