Posted On September 13, 2022 Consumer Privacy & Data Breaches
On September 9, 2022, Medical Associates of the Lehigh Valley (“MATLV”) reported a data breach with the U.S. Department of Health and Human Services Office for Civil Rights stemming from what the organization describes as a sophisticated ransomware attack. Based on an official filing from the company, the incident resulted in an unauthorized party gaining access to patients’ names, addresses, email addresses, dates of birth, Social Security numbers, driver’s license numbers, state ID numbers, health insurance providers, medical diagnoses, medical treatment information, medications, and lab results. After confirming that consumer data was leaked, MATLV began sending out data breach notification letters to the 75,628 individuals who were impacted by the recent data security incident.
If you received a data breach notification, it is essential you understand what is at risk. The data breach lawyers at Console & Associates, P.C. are actively investigating the MATLV data breach on behalf of people whose information was exposed. As a part of this investigation, we are providing free consultations to anyone affected by the breach who is interested in learning more about the risks of identity theft, what they can do to protect themselves, and what their legal options may be to obtain compensation from Medical Associates of the Lehigh Valley.
According to official notice filed by the company, on July 3, 2022, Medical Associates of the Lehigh Valley learned that the organization had been targeted in a ransomware attack. After learning of the incident, MATLV took the necessary steps to secure its IT system and then began working with third-party forensic specialists in hopes of learning more about the nature and extent of the breach.
The MATLV investigation confirmed that an unauthorized party had gained access to certain files containing sensitive patient information.
Upon discovering that patient data was accessible to an unauthorized party, Medical Associates of Lehigh Valley then reviewed the affected files to determine what information was compromised and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, address, email address, date of birth, Social Security number, driver’s license number, state ID number, health insurance providers, medical diagnoses, medical treatment information, medications, and lab results.
On September 9, 2022, Medical Associates of Lehigh Valley sent out data breach letters to all individuals whose information was compromised as a result of the recent data security incident. According to the Health and Human Services Office for Civil Rights, the MATLV data breach affected 75,628 patients.
Medical Associates of the Lehigh Valley is an independent healthcare provider based in Allentown, Pennsylvania. MATLV is a physician-owned professional corporation with more than 25 locations throughout Lehigh County. The practice group primarily focuses on primary care, family medicine and pediatrics. The group provides physicians with administrative benefits that enables them to run their practices more smoothly, and provides patients with a consistent level of care. Medical Associates of Lehigh Valley employs more than 136 people and generates approximately $19 million in annual revenue.
At Console & Associates, P.C., our consumer privacy lawyers monitor all security and data breaches to help affected consumers pursue their legal remedies. We offer free consultations to victims of data breaches and can explain your rights in clear, understandable terms so you can make an informed decision about how to proceed with your case. If you’ve been affected by the MATLV data breach or any other data security incident, Console & Associates, P.C., will investigate your case at no charge and offer you thorough advice about how to most effectively proceed with your case. If you decide to bring a case, we only get paid if you do. If your claim is successful, any legal fees are either paid by the defendant or come out of the funds recovered from the defendant. If your claim doesn’t result in a recovery, you will pay nothing.
To schedule your free consultation, just call (866) 778-5500 today or fill out our secure contact form.
Below is a copy of the initial data breach letter issued by Medical Associates of the Lehigh Valley (the actual notice sent to consumers can be found here):
On July 3, 2022, Medical Associates of the Lehigh Valley (“MATLV”) became aware that it was victimized by a sophisticated ransomware attack that impacted its network. Upon discovery, MATLV immediately took steps to secure its network and promptly began an investigation, aided by third-party forensic specialists, to confirm the nature and scope of the incident. MATLV also reported this incident to federal law enforcement. Through the investigation, it was determined that certain files may have been subject to unauthorized access as part of the cyber-attack.
Following a thorough analysis, the investigation determined that information contained in the affected files may have included patient protected health information (PHI). The type of information contained within the affected data includes patient names, in combination with one or more of the following: address, email address, date of birth, Social Security number, driver’s license number / State ID number, health insurance provider, medical diagnosis/medical treatment information, medications, and/or lab results.
At this time, MATLV is not aware of any evidence to suggest that any information has been fraudulently misused. However, MATLV was unable to rule out the possibility that the information may have been accessed during the attack. Therefore, in an abundance of caution, MATLV is notifying potentially impacted individuals of this incident.
In response to this incident, MATLV has partnered with third-party forensic specialists to fully investigate the nature and scope of this matter, and to evaluate and reinforce existing security measures and facilities within the network to ensure optimal data security. Although MATLV has no evidence of actual or attempted fraudulent misuse of information as a result of this incident, individuals are nonetheless encouraged to monitor their account statements and explanation of benefits forms for suspicious activity and to detect errors.
MATLV takes the privacy and security of the information in its care seriously, and sincerely regrets any worry or inconvenience this incident may have caused.
If you received a data breach letter from HMedical Associates of the Lehigh Valley, contact our data breach attorneys at (866) 778-5500 to discuss your legal options.