Strauss Borrelli PLLC, a leading data breach law firm, is investigating Atrium Health regarding its recent data breach. The Atrium Health data breach may have involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.
ABOUT ATRIUM HEALTH:
Atrium Health is a healthcare provider that serves the greater Charolette area. A part of Advocate Health, one of the United States’ largest non-profit health systems, Atrium Health offers a wide range of services, including primary care, cancer care, cariology, behavioral health, rehabilitation, surgery, imaging, and orthopedic and musculoskeletal care. Additionally, Atrium Health performs extensive and contemporary research. Headquartered in Charlotte, North Carolina, Atrium Health has 40 hospitals and over 190 locations across North Carolina and employs more than 70,000 individuals.2
WHAT HAPPENED?
Recently, Atrium Health announced that it had experienced a data breach in which the sensitive personal identifiable information and protected health information in its systems may have been accessed. According to the breach notice, on April 29, 2024, Atrium Health became aware of suspicious activity within its email environment. As a result, Atrium Health launched an investigation to determine the nature of the incident.
Through its investigation, Atrium Health learned that sensitive personal information in its systems may have been compromised by an unauthorized third-party via an email phishing attack between April 29 and April 30, 2024. As a result, Atrium Health began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. On July 17, 2024, Atrium Health completed this review. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Address
- Date of birth
- Contact information (e.g., email address, phone number)
- Driver’s license or state issued identification number
- Government or employer identifiers
- Financial information (e.g., account number, routing numbers, financial institution name, security code/PIN and/or expiration date)
- Medical information (e.g., treatment/diagnosis, prescription, patient identification number)
- Health insurance and/or treatment cost information (e.g., health insurance account or policy number(s), incidental health references, billing identification numbers, access credentials, digital signature)
As a result of the data breach, Atrium Health posted a notice of the incident on its website. Additionally, Atrium Health plans to mail data breach notification letters to impacted individuals. Based on the breach notice on its website, Atrium Health is providing affected individuals with a list of the specific type of sensitive information impacted and complimentary identity monitoring services. A link to the form breach notification that Atrium Health posted to its website is below.
If you are a current or former employee or patient of, or have received a breach notification letter from, Atrium Health:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.