Posted On March 15, 2023 Consumer Privacy & Data Breaches
March 15, 2023 – After learning that a successful email phishing attack had given an unauthorized party access to files containing private patient information, Beaver Medical Group filed a notification of a data breach with the Attorney General of California on March 8, 2023. The event led to unauthorized access to the names, premium payment amounts, health plan names, and member ID numbers of consumers, according to the company’s formal filing. After verifying that data had been compromised, Beaver started notifying everyone who had been affected by the recent data security incident.
It is critical that you comprehend what is at risk if you get a notification of a data breach. On behalf of those whose information was compromised, the data breach lawyers at Console & Associates, P.C. are investigating the Beaver Medical Group data breach. We are offering free consultations as part of this inquiry to anyone who has been impacted by the breach and is curious to learn more about the dangers of identity theft, self-defense tips, and potential legal recourse against Beaver.
Located in Redlands, California, Beaver Medical Group is a sizable medical organization established in 1945. Along with three urgent care centers, Beaver runs 17 healthcare sites throughout the Inland Empire, including Colton Office, Beaumont South Office, Redlands Main Office, Inland Surgery Center, Yucalpa Office, San Gorgonio Memorial Hospital, and many more.
Optum, a sizable healthcare and tech business with headquarters in Eden Prairie, Minnesota, owns Beaver Medical Group. More than 548 individuals are employed by Beaver Medical Group, which brings in about $80 million annually.
Beaver discovered unusual behavior on a worker’s computer on January 24, 2023, according to the company’s filing with the California Attorney General. Beaver began an investigation into the incident as a result. The Beaver investigation revealed that a third party was able to access the employee’s email account after a phishing attack. It was discovered that some of the information stored in the database was inaccurate and that the information was not up to date.
Beaver Medical Group started to examine the impacted files after learning that private customer information had been made accessible to an unauthorized party in order to ascertain what information had been compromised and which customers were impacted. Your name, premium payment amount, health plan name, and member ID number may have been compromised, though the specifics vary by the person.
On March 8, 2023, Beaver Medical Group sent data breach notification letters to all individuals who were impacted by the phishing attack.
The consumer privacy lawyers at Console & Associates, P.C. help customers affected by data and security breaches pursue legal solutions by offering free consultations. By explaining your rights in clear, concise terms, we help you make an informed decision about your next steps. If you are a victim of the Beaver Medical Group data breach, Console & Associates, P.C. will investigate at no charge to you and offer advice on how to proceed. If you decide to pursue a case, rest assured that we don’t get paid unless you do. If your claim is successful, legal fees are either paid out of the funds recovered or by the defendant. If your claim is not successful, you pay nothing.
Below is a portion of the letter sent to affected individuals:
We are writing to inform you of a data security incident that involved a limited amount of your personal information. This notice explains the incident, what we are doing in response, and steps you can take to help protect against possible misuse of your information.
On January 24, 2023, Beaver Medical Group (BMG) / Epic Management LLC (EPIC), part of Optum, became aware of unusual activity on an employee’s workstation and quickly took steps to secure our network and begin an investigation. We discovered that an unauthorized third-party launched a targeted phishing attack and temporarily gained access to certain emails and records on the employee’s account. On February 3, 2023, our investigation determined that some of your personal information may have been viewed by the unauthorized third-party during the incident.
What Information Was Involved
The information involved included your name, member ID number, health plan name and premium payment amount. This incident did not involve your address, date of birth, Social Security number, clinical information, driver’s license number or any financial account information.
What We Are Doing
We have enhanced the security controls tools on our website servers to help prevent a similar incident from happening in the future and will continue to monitor our systems to proactively identify additional safeguards.
What You Can Do
As a precaution to protect against misuse of your personal information, you may want to order copies of your credit reports from each of the three national credit reporting agencies to check for any inaccurate information, particularly medical services or medical bills that you do not recognize. If you notice any suspicious activity, contact the credit reporting agencies using the contact information provided on the report
For More Information
We regret that this incident occurred. BMG / EPIC takes this matter seriously and is committed to protecting the privacy and security of your personal information. Please accept our sincere apologies for any inconvenience or concern this incident may cause you. We have established a dedicated toll-free hotline that you can call if you have any questions, available Monday through Friday between 9:00 AM and 5:00 PM CST. The toll-free telephone number is: 1-888-839-7948.