Posted On March 3, 2022 Consumer Privacy & Data Breaches
March 3, 2022 – Recently, DataHEALTH, Inc. announced that the company was the target of a ransomware attack resulting in certain consumers’ information being compromised. Those impacted by a data breach should be sure they understand what happened, what their rights are, and how they can pursue them. The data breach lawyers at Console & Associates, P.C. are actively investigating this security breach. As a part of the investigative process, our attorneys will be interviewing any victims of the breach to determine what harm was caused and whether they are eligible to bring a data breach class action lawsuit against DataHEALTH.
DataHEALTH, Inc. is a cloud hosting, cloud backup, data storage and recovery service provider for the healthcare industry. In this role, DataHEALTH stores patients’ personal information for its health care provider customers. The company was founded in 2000 and initially focused its business on providing cloud backup for small to medium size businesses. However, in 2011, the company expanded its focus to include cloud backup for healthcare providers. DataHEALTH more recently began providing remote IT managed services for its customers.
According to a “Notice of Data Security Incident” issued by the company, on November 3, 2021, DataHEALTH discovered it was the target of a ransomware attack. In response, the company secured its servers and engaged in an internal investigation to identify the nature and scope of the incident. On December 30, 2021, the company confirmed that the unauthorized party obtained data from DataHEALTH’s servers through a third-party software used by some of the company’s customers. The company also learned that certain consumer data was compromised as a result of the ransomware attack.
While the compromised information varies by consumer, it may include affected parties’ names, addresses, phone numbers, medical information, insurance information, dates of birth, payment information, and Social Security numbers. According to one source, the DataHEALTH breach may have impacted as many as 2,459 people.
On January 20, 2022, DataHEALTH began sending out data breach notification letters to all individuals whose information was contained in the affected files.
When you allowed DataHEALTH access to your personal data, you trusted the company to keep your sensitive information safe. However, news of the DataHEALTH data breach raises some very serious questions about the company’s data security measures and whether the company could have done more to prevent this type of cyber-attack.
Regardless of the industry, all businesses have a legal obligation to protect consumer information in their possession. Although creating and maintaining a data security system is costly, this is a necessary expense given the frequency with which cyberattacks occur.
Consumers whose personal, identifying, financial or healthcare-related data was compromised in a data breach can pursue legal action against a company that misused or mishandled their information. However, the investigation into the DataHEALTH breach is only in its beginning phases. For that reason, it is too early to tell if DataHEALTH was legally responsible for the breach. However, our data breach attorneys are investigating the DataHEALTH security breach to determine the potential legal remedies of those affected.
If you have questions about your ability to pursue a data breach class action lawsuit against DataHEALTH, contact a data breach attorney as soon as possible.
If you receive a data breach notification from DataHEALTH in the coming weeks, it means your personal data was among that which was compromised in the recent cyberattack. It also means a cybercriminal may have had access to—and may have stolen—your personal data. Given the risks involved, it is important you remain vigilant by taking the following steps:
At Console & Associates, P.C., our consumer privacy lawyers monitor all security and data breaches to help affected consumers pursue their legal remedies. We offer free consultations to victims of data breaches and can explain your rights in clear, understandable terms so you can make an informed decision about how to proceed with your case. If you’ve been affected by the DataHEALTH data breach or any other data security incident, Console & Associates, P.C., will investigate your case at no charge and offer you thorough advice about how to most effectively proceed with your case. If you decide to bring a case, we only get paid if you do. If your claim is successful, any legal fees are either paid by the defendant or come out of the funds recovered from the defendant. If your claim doesn’t result in a recovery, you will pay nothing.