Posted On August 26, 2022 Consumer Privacy & Data Breaches
August 25, 2022 – Northeast Rehabilitation Hospital Network (“NRHN”) reported a data breach after the company was targeted in a recent cybersecurity attack. The investigation is still ongoing and so, the company has not yet fully identified all the data types that were affected. NRHN sent out data breach letters to those individuals whose information was affected by the breach.
The data breach lawyers at Console & Associates, P.C. are going to begin interviewing victims of the breach to determine what damages they sustained and what legal claims may be available to them. If you recently received a NOTICE OF DATA BREACH from Northeast Rehabilitation Hospital Network, contact us at (866) 778-5500 to discuss your legal options, or submit a confidential contact form for a free case evaluation.
Below is a portion of the letter that NRHN sent to individuals affected by the data breach:
Dear [Redacted],
Northeast Rehabilitation Hospital Network (“NRHN”) is writing to inform you of an event that may impact the privacy of some of your personal information. While we are unaware of any attempted or actual misuse of your information, we are providing you with information about the event, our response, and information related to what you may do to better protect your information, should you feel it necessary to do so.
What Happened? On September 30, 2021, NRHN became aware of suspicious activity related to its systems and immediately launched an investigation to determine the nature and scope of the activity. The investigation determined that an unauthorized individual gained access to certain NRHN systems between September 30, 2021 and October 5, 2021, and accessed certain information stored on those systems. We then proceeded to conduct a thorough and time-intensive review of the impacted information to ensure we identified all individuals with information potentially at risk, which was completed on August 3, 2022.
Although NRHN is unaware of any actual or attempted misuse of individuals’ information, NRHN is providing notice of this event to individuals who were identified through the comprehensive data review.
What Information Was Involved? Our investigation determined that the following types of your information were included in the impacted files: name, [Redacted].
What We Are Doing. We take this incident and the security of personal information in our care very seriously. Upon discovery, NRHN immediately took steps to ensure the security of our systems and investigate the event. Notice of the event was provided to local and national media outlets and posted on the Northeast Rehabilitation website. As part of our ongoing commitment to the privacy of information in our care, we have implemented additional technical security measures to strengthen the security of our systems. We also have reviewed and enhanced existing data privacy policies and procedures. We immediately notified the FBI and other regulatory bodies of this incident and are updating additional agencies as required.
As an added precaution we are offering you access to <<CM Length>> months of credit monitoring and identity theft protection services through Epiq at no cost to you. Enrollment instructions are enclosed with this letter. We encourage you to enroll in these services as we are unable to act on your behalf to do so.
What You Can Do. We encourage you to remain vigilant against incidents of identity theft and fraud, to monitor your accounts for any unusual activity, and to report any instances of theft or fraud to law enforcement. Please review the enclosed Steps You Can Take to Help Protect Personal Information for useful information on what you can do to better protect against possible misuse of your information. You can also enroll to receive the complimentary credit monitoring services that we are offering to you.
