Consumer Privacy & Data Breaches

March 30, 2023 – Following the discovery that private client information entrusted to the bank had been compromised as a result of a cybersecurity incident, Central National Bank filed a notice of data breach with the Attorney General of Texas on March 28, 2023. According to the firm’s official report, the event led to illegal access to consumers’ names, Social Security numbers, driver’s license numbers, financial account

March 30, 2023 – Tri Counties Bank posted a “Network Outage Update” on the company website on March 24, 2023, after establishing that a recent ransomware assault may have exposed private customer data to thieves. Because the attack was so recent and the investigation hasn’t been concluded, the types of information compromised haven’t been released. Once Tri Counties Bank has gathered all necessary information, if any consumer

March 28, 2023 – Oklahoma City University (“OCU”) discovered that a cyberattack jeopardized the security of current and former students, staff members, and others whose personal information was stored on the university’s systems, and on March 20, 2023, OCU filed a notice of data breach with the Attorney General of Montana. The incident led to the unauthorized party learning the names, addresses, license and state ID numbers,

March 29, 2023 – Associates in Dermatology (AID) reported a data breach to the Office for Civil Rights of the U.S. Department of Health and Human Services on March 17, 2023. It appears that this was caused by a ransomware attack on Virtual Private Network Solutions, LLC (“VPN Solutions”), an AID provider that offers the business software for managing electronic health records. According to third-party sources, the

March 29, 2023 – After finding that a third party had broken into encrypted areas of the company’s network and gained access to private patient data, Atlantic General Hospital (or “Atlantic”) filed a notice of data breach with the Attorney General of Maine on March 24, 2023. According to the firm’s official report, the incident led to unauthorized access to customers’ names, dates of birth, driver’s license

March 28, 2023 – After finding that private customer data was accessed by an unauthorized party while it was in the company’s possession on March 24, 2023, NCB Management Services, Inc. (“NCB”) filed a report of a data breach with the Attorney General of Maine. According to the company’s official report, the incident led to unauthorized access to customer information, including names, addresses, dates of birth, phone

March 28, 2023 – After learning that access had been acquired by an unauthorized party to the company’s computer system as a result of a ransomware assault, Florida Medical Clinic, referred to as “FMC,” filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights (HHS-OCR) on March 10, 2023. The issue led to unauthorized access to customer names,

March 28, 2023 – Atlantic Dialysis Management Services, LLC (ADMS) discovered that a third party was able to access private patient information contained on the business’s computer network on March 23, 2023, and as a result, the company filed a complaint of data breach with the Attorney General of Massachusetts. According to the company’s filing, the event led to unauthorized access to consumer information, including names, birth

March 25, 2023 – Following a cybersecurity event in which unauthorized individuals stole files containing sensitive consumer information, SundaySky Inc. filed a data breach notice with the U.S. Department of Health and Human Services Office for Civil Rights (HHS-OCR) on March 7, 2023. According to the business’s official report, the breach led to unauthorized access to customers’ first names, Healthcare Savings Account details, and email addresses. SundaySky

March 25, 2023 – The U.S. Department of Health and Human Services Office for Civil Rights (HHS-OCR) received a data breach notice from Kroger Postal Prescription Services (Kroger PPS) on March 15, 2023, after finding that private consumer information in Kroger PPS’ possession had been vulnerable to unauthorized access. Although the HHS-OCR listing does not disclose the precise data types that were exposed, it appears from the

March 22, 2023 – Convergent Outsourcing, Inc. discovered that the company’s private customer data was accessed by an unauthorized party on March 17, 2023, and as a result, the firm filed a notice of data breach with the Massachusetts Attorney General’s Office. The event led to the unauthorized entity learning the names, Social Security numbers, and financial account information of consumers, according to the company’s filing.

March 22, 2023 – After realizing that an unauthorized party had acquired access to specific areas of the Sunland network that included private customer information, Sunland Asphalt and Construction, LLC (“Sunland”) filed a notice of data breach with the Attorney General of Maine on March 17, 2023. According to the firm’s formal filing, the incident led to unauthorized access to customers’ names, driver’s license numbers, dates of

March 22, 2023 – After realizing that private customer data had been compromised in a recent cybersecurity incident, Texas Medical Liability Trust filed a notice of data breach with the Attorney General of Texas on March 6, 2023. An unauthorized party was able to obtain customers’ names, Social Security numbers, driver’s license numbers, protected health information, and financial account information as a result of the breach,

March 19, 2023 – Happy State Bank (HSB) discovered that sensitive customer data kept on the business’s computer system had been accessed as a result of an email phishing attempt on March 16, 2023, and as a result, it filed a notice of data breach with the Maine Attorney General’s office. The breach led to an unauthorized entity obtaining access to the names and Social Security numbers

March 18, 2023 – AllCare Plus Pharmacy, Inc. learned that private patient data kept on the business’s computer system had been breached as a result of a cyberattack on March 16, 2023, and filed a notice of data breach with the Texas Attorney General. According to the business’s official report, the event led to unauthorized access to consumers’ names, Social Security numbers, protected health information, bank