call for a free consultation
(866) 778-5500
$100 Million awarded Since 1994 6,000 Satisfied Clients

Posted On January 28, 2023 Consumer Privacy & Data Breaches

Protected Health Information Leaked in mscripts, LLC Data Breach

NOTICE: If you received a NOTICE OF DATA BREACH letter from mscripts, LLC, contact the attorneys at Console & Associates at (866) 778-5500 to discuss your legal options, or submit a confidential Case Evaluation form here.

Data Breach AlertJanuary 28, 2023 – mscripts, LLC filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights on January 17, 2023 after an unauthorized party gained access to consumer information. Per the filing, confidential consumer information, including protected health information, was leaked. Mscripts confirmed the leak and began sending out notification letters to 66,372 individuals affected by the data breach.

At Console & Associates, P.C., data breach lawyers are actively investigating the breach at mscripts. If you have received a letter from mscripts, your information may now be in the hands of those wishing to do you harm in the form of fraud or identity theft. To learn more about what you can do to protect yourself now and whether you may be able to pursue a data breach lawsuit against mscripts, we are offering free consultations. If you recently received a NOTICE OF DATA BREACH from COMPANY, contact us at (866) 778-5500 to discuss your legal options, or submit a confidential contact form for a free case evaluation.

About mscripts, LLC

Mscripts, LLC is a software company that provides services such as an app that allows patients to easily keep track of their prescriptions with real-time updates and the ability to refill right from the app. Mscripts is owned by Cardinal Health, which is a healthcare service and product company. While Cardinal Health is based in Dublin, Ohio, and employs over 46,000 people and generates approximately $176 billion in revenue annually, mcscripts is based in San Francisco, California, and employs over 73 people and generates approximately $15 million in revenue annually.

What We Know About the mscripts Data Breach

According to the company’s filing with the U.S. Department of Health and Human Services Office for Civil Rights (“HHS-OCR”), mscripts discovered that there was an incident involving unauthorized access. Neither mscripts nor Cardinal Health has posted notices on their websites, so information is limited at this time. We can assume, however, that protected health information has been leaked because of the filing with the HHS-OCR. All breaches that involve protected health information must be filed with the HHS-OCR.

Some examples of protected health information that may have been exposed are medical history information, mental health information, insurance information, demographic information, diagnosis information, and other data that may have been disclosed by a patient to a healthcare provider.

On January 17, 2023, mscripts sent notification letters to all individuals affected by the data breach. Though still not publicly confirmed by mscripts, according to the HHS-OCR website, 66,372 individuals have been affected.

What Can Happen if Your Protected Health Information is Leaked?

Though, at first glance, it doesn’t seem like much damage can even be done with your health information, protected health information includes quite a bit of sensitive information about a patient.

The Health Insurance Portability and Accountability Act of 1996, or HIPAA, has defined protected health information (PHI) by 18 identifiers. These identifiers include: Only specific health information is considered protected by the Health Insurance Portability and Accountability Act of 1996, also known as HIPAA. HIPAA identifies and controls all protected health information (PHI). According to its “Privacy Rule,” PHI is:

  • Name;
  • Geographic locations that are less than a state, including street address, city, county, zip code, etc.;
  • Any dates related to a patient that are more specific than a year, including date of birth, date of death, discharge dates, etc.;
  • Social security number;
  • Email address;
  • Phone number;
  • Account numbers;
  • Medical record number;
  • Health plan beneficiary numbers;
  • Certificate and license number;
  • Vehicle identifiers, like license plate numbers;
  • Device identifiers;
  • Internet protocol (IP) address;
  • Web URL;
  • Fax number;
  • Full-face photographs and other photos of identifying characteristics;
  • Biometric IDs, such as a fingerprint or voice print; and
  • Any other unique identifying characteristic.

With this information, criminals can commit medical identity theft. That means that anyone possessing your information, including hackers or a criminal who bought your information off the dark web, can use it to seek free health care. As a result of that, there might be dangerous misinformation in your medical record, like incorrect medical history, diagnoses that don’t belong to you, and prescription history that doesn’t match up with your medical history. You can also be left with a hefty medical bill for treatment you didn’t receive. These things can affect the type of care you receive the next time you seek medical care.

If You Have Been Affected by the mscripts, LLC Data Breach, Console & Associates, P.C. Can Help

The consumer privacy lawyers at Console & Associates, P.C. help customers affected by data and security breaches pursue legal solutions by offering free consultations. By explaining your rights in clear, concise terms, we help you make an informed decision about your next steps. If you are a victim of the mscripts, LLC data breach, Console & Associates, P.C. will investigate at no charge to you and offer advice on how to proceed. If you decide to pursue a case, rest assured that we don’t get paid unless you do. If your claim is successful, legal fees are either paid out of the funds recovered or by the defendant. If your claim is not successful, you pay nothing.

To schedule your free consultation, just call (866) 778-5500 today or fill out our secure contact form.

NOTICE: If you received a NOTICE OF DATA BREACH letter from mscripts, LLC, contact the attorneys at Console & Associates at (866) 778-5500 to discuss your legal options, or submit a confidential Case Evaluation form here.

Recent Articles

Categories

New Jersey

Newark

Console and Associates Accident Injury Lawyers, P.C. is a personal injury law firm that represents accident victims in New Jersey & Pennsylvania. We are best known for our skill in seeking maximum compensation and for the compassionate manner in which we help our clients restore their lives after devastating injuries.

© 2024 by Console and Associates Accident Injury Lawyers, PC. All rights reserved. Disclaimer | Privacy Policy | Sitemap

ATTORNEY ADVERTISING This is a paid advertisement by Attorney Richard P. Console Jr., Esq. and the law firm of Console & Associates P.C., not a referral service. Prior results do not guarantee a similar outcome. Testimonials are not necessarily representative of results obtained. Console & Associates, P.C.'s primary office is located at One Holtec Drive, Suite #100, Marlton, NJ 08053 and can be reached at 866-778-5500. The attorney responsible for this advertisement is Richard P. Console Jr., Esq. The information presented on this site is provided for general informational purposes only and should not be construed as formal legal advice nor the formation of an attorney-client relationship. Use of this site does not create an attorney-client relationship. Submitting information or case details through this site does not create an attorney-client relationship. An attorney will need to review the specific facts of your case to determine representation.

References to any particular case do not constitute a representation that we are participating in that case. While we handle litigation related to the legal issues discussed on this site, we are not necessarily involved in any particular cases mentioned. Any references to specific cases are for illustrative purposes only and do not indicate that we are counsel in that case.

In certain instances, we may choose to involve co-counsel or refer a matter to another firm if we believe it is in the client's best interest. Any information you provide will only be reviewed by our firm and/or our co-counsel attorneys to evaluate your case and eligibility. While we make efforts to ensure the information on this site is accurate, it may not reflect all relevant facts and circumstances. You should not take any action based upon this information without first consulting legal counsel about your particular situation.

The choice of an attorney is an important one and should not be based solely on advertisements. Results may vary depending on your particular facts and legal circumstances. If you believe you may have a claim, we would be happy to discuss potential representation with you, subject to our standard intake procedures and conflict checks. However, by visiting this site or contacting us, no attorney-client relationship is created. Confidential information should not be sent to us until a formal engagement letter is signed.

New Jersey Residents: If you live in New Jersey and believe this advertisement is inaccurate or misleading, you may report same to the Committee on Attorney Advertising, Hughes Justice Complex, CN 037, Trenton, New Jersey 08625. No aspect of this advertisement has been approved by the Supreme Court of New Jersey.

PRIVACY: We are committed to protecting your privacy. We do not sell, trade or rent your personal information to third parties. Any information you provide us will only be reviewed by our firm and/or our co-counsel attorneys. You may be contacted by our firm or by one of our co-counsel law firms. This privacy statement discloses how the information you provide is used and protected.

AHA MRF Compliance
Instagram facebook icon linkedin icon twitter icon