Consumer Privacy & Data Breaches

July 8, 2022 – Bayhealth Medical Center, Inc. posted notice of a data breach on July 5, 2022, that affected the sensitive information of as many as 17,481 patients. The company explained that the incident involved a breach at one of the company’s vendors, Professional Finance Company, Inc. (“PFC”). As a result of the PFC data , patients’ first and last names, addresses, dates of birth,

July 8, 2022 – CHRISTUS Spohn Health System Corporation (“CHRISTUS”) reported a data breach to the U.S. Department of Health and Human Services Office for Civil Rights on July 1, 2022, after the health care system was targeted in a ransomware attack. While CHRISTUS reported the breach, it has yet to provide many details about the incident. However, the ransomware group AvosLocker has since taken credit for

July 7, 2022 – On July 1, 2022, WellDyneRx, LLC filed notice with the U.S. Department of Health and Human Services Office for Civil Rights regarding a December 2021 data breach. While WellDyne previously disclosed the breach to various state government entities, the most recent filing is the first time the company provided an estimate of the number of affected people. Based on the most recent information,

July 6, 2022 – ATC Healthcare Services, LLC reported a data breach after the company was targeted in a recent cybersecurity attack. As a result of the breach, the names, Social Security numbers, driver’s licenses, financial account information, usernames and passwords, passport numbers, biometric data, medical information, health insurance information, electronic/digital signatures, and employer-assigned identification numbers of certain individuals were compromised. The number of individuals affected

July 6, 2022 – Chefs’ Toys, LLC reported a data breach after the company was targeted in a recent cybersecurity attack. As a result of the breach, the name and your credit or debit card number(s) of certain individuals was compromised. The number of individuals affected by the  Chefs’ Toys data breach has not been reported. On June 24, 2022, Chefs’ Toys sent out data breach

July 6, 2022 – Carolina Behavioral Health Alliance, LLC reported a data breach after the company was targeted in a recent cybersecurity attack. As a result of the breach, the Name, Address, Health Plan ID#, Gender, and Social Security Number of certain individuals was compromised. The number of individuals affected by the Carolina Behavioral Health data breach has not been released. On July 1, 2022, Carolina

July 6, 2022 – East West Family of Companies reported a data breach after the company was targeted in a recent cybersecurity attack. As a result of the breach, the name and Social Security number of certain individuals was compromised. It has not been reported the number of individuals affected by the East West data breach. On July 1, 2022, East West sent out data breach

July 6, 2022 – Proliant Settlement Systems, LLC reported a data breach after the company was targeted in a recent cybersecurity attack. As a result of the breach, the personal information, including driver’s license number, social security number, passport number, or financial information of certain individuals was compromised. The Proliant Settlement Systems data breach is believed to have impacted as many as 12,697 individuals. On

July 6, 2022 – Earlier this year, we reported on a data breach at Professional Finance Company, Inc. (“PFC”) that stemmed from a February 2022 ransomware attack. At the time, little information about the incident was known; however, the company had confirmed that certain information belonging to current and former employees was compromised. More recently, PFC released additional information about the breach, including that it resulted in

July 6, 2022 – Recently, the California Department of Justice (“DOJ”) announced a data breach that leaked the personal information of Concealed Carry Weapon (CCW) permit holders across the state. Evidently, the leak resulted in the following information being exposed: names, ages, addresses, Criminal Identification Index (CII) numbers and license types (Standard, Judicial, Reserve and Custodial). The Fresno County Sheriff’s Office was the first organization to

June 30, 2022 – Recently, OpenSea issued a warning to users as well as those who subscribe to the company’s newsletter that an employee at OpenSea’s email delivery vendor, Customer.io, downloaded a file containing email addresses and shared it with an unauthorized party. As a result, OpenSea is advising all potentially affected parties to be on the watch for upcoming phishing emails designed to get victims to

June 30, 2022 – Benefit Plan Administrators, Inc. (“BPA”) reported a data breach after the company was targeted in a recent cybersecurity attack. As a result of the breach, the full names, addresses, dates of birth, Social Security numbers, gender classification, claims information, medications information, and medical diagnosis/conditions information of certain individuals was compromised. The number of individuals affected by the BPA data breach has not

June 30, 2022 – Recently, a spokesperson for a previously unknown threat group named DAIXIN Team contacted news outlets to take credit for a ransomware attack at Fitzgibbon Hospital. Evidently, the cybercriminals were able to steal over 40 gigabytes of patient data, including affected patients’ names, dates of birth, medical record numbers, patient account numbers, Social Security numbers, and medical and treatment information. Fitzgibbon Hospital has

June 29, 2022 – Recently, Covenant Care California, LLC released additional information about a data breach, supplementing a notice the company previously sent out to affected parties on May 6, 2022. According to a “Notice of Data Event” posted on the company’s website, it is now confirmed that the breach involved the names, medical information, health insurance information, dates of birth, Social Security numbers, driver’s license

June 28, 2022 – Recently, Mason Tenders’ District Council Welfare Fund, Annuity Fund and Pension Fund (“Mason Tenders’ District Council Funds,” “Mason Tenders”) filed official notice of a data breach with various state government entities. Based on the most recently available information, the Mason Tenders breach affected the names, Social Security numbers, and dates of birth of approximately 20,090 individuals. On June 22, 2022, Mason Tenders’