Adaptive Health Integrations Experiences Massive Data Breach Affecting Over 500k People | Console and Associates, P.C. | #itsecurity | #infosec


In one of the largest data breaches in recent months, Adaptive Health Integrations (“AHI”) reported that the company experienced a data breach affecting more than 510,574 individuals. On April 11, 2022, AHI filed official notice of the breach with the federal government and began sending out data breach letters to those whose information was compromised as a result of the incident.

If you receive an Adaptive Health Integrations data breach letter, you are not alone. However, you shouldn’t let the fact that over a half million other people were affected by the breach prevent you from giving the situation the attention it deserves. While the company has not yet publicly disclosed the specific information that was compromised, it is imperative that you educate yourself about the risks of data breaches and take the appropriate action to reduce the chance of fraud or identity theft. To learn more about the steps you can take to protect yourself from becoming a victim of fraud or identity theft and what your legal options are following the IDC Research data breach, please see our recent blog post on this topic here.

Additional Information Regarding the Adaptive Health Integrations Breach

Given the recency of the AHI breach, there are few details being provided about the incident. However, according to an official filing by the company, Adaptive Health Integrations recently learned that an unauthorized party was able to gain access to the company’s computer system on or around October 17, 2021. After learning about the incident, AHI launched an investigation into the breach to learn more about its causes and whether any consumer information was compromised. On February 23, 2022, the AHI confirmed that sensitive information belonging to 510-574 individuals was compromised. On or around April 11, 2022, Adaptive Health Integrations began sending out data breach notification letters to all affected parties.

Based in Williston, North Dakota, Adaptive Health Integrations provides various billing and software support services to laboratories, healthcare companies and doctors’ offices. Adaptive Health Integrations is affiliated with MedScan Laboratory, Inc. Medscan Laboratory operates three labs in Williston, ND, Atlanta, GA, and Houston, TX. Medscan Laboratory employs 164 people and generates approximately $30 million in annual revenue.

What to Do After a Data Breach Involving Protected Health Information

While Adaptive Health Integrations did not provide details about the type of information that was leaked as a result of the recent breach, given the company’s line of business, it is possible that the breach could have exposed consumers’ protected health information. According to the U.S. Department of Health and Human Services, protected health information is defined as information that relates to:

  • an individual’s past, present or future physical or mental health or condition,

  • the provision of health care to the individual, or

  • the past, present, or future payment for the provision of health care to the individual,

  • and that identifies an individual or may be used to identify an individual.

Data breaches involving protected health information raise different concerns from those involving Social Security numbers and financial account information. In fact, the credit reporting agency, Experian, reports that the average cost to rectify a healthcare data breach is approximately $13,500. Primarily, the threat of a healthcare data breach is that someone uses your information to obtain medical treatment under your name. This can result in you receiving medical bills for procedures you never had performed, but more importantly, your medical record may contain incorrect information provided by the criminal who stole your identity.

Given this reality, it is important for those who have had their protected health information compromised as a result of a data breach to take certain steps to protect themselves.

1. Gather Documentation and Report the Incident

The first thing to do after a healthcare data breach is to assemble all documentation that your protected health information was stolen. This includes the data breach letter from the company and any fraudulent medical bills. You should also notify the Federal Trade Commission by submitting an Identity Theft Report.

2. Review Your Current Medical Records

This next step is perhaps the most onerous but also the most important. You will want to collect all your medical records and review them for accuracy. Keep an eye out for any unfamiliar treatments. You should also verify that the addresses and phone numbers on file are correct.

3. Request Providers Correct All Errors

If you notice that something is wrong in your medical records, you should request that the provider correct the error. The last thing you want is for your medical records to have incorrect information, such as a missing drug allergy.



Original Source link

Leave a Reply

Your email address will not be published.

fifty four − = forty six