Strauss Borrelli PLLC, a leading data breach law firm, is investigating ApolloMD Business Services, LLC (“ApolloMD”) regarding its recent data breach. The ApolloMD data breach may have involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.
ABOUT APOLLOMD BUSINESS SERVICES, LLC:
ApolloMD is a physician practice management company based in Georgia. Founded in 1983, ApolloMD offers multispecialty business and health services to hospitals and health systems which aim to improve clinical operations, patient care, and financial performance.2,4 The services offered by ApolloMD across health systems include performance-based compensation structures for physicians and APCs, in-house billing, proprietary scheduling systems, efficiency assessment, hospital physician recruitment and management, revenue cycle management, treatment services, etc. 4, 5, 6, 7 Headquartered in Atlanta, Georgia, ApolloMD employs over 1,000 individuals and is partnered with over 2,500 physicians and APCs and 125 practices across the U.S.2,3
Entities associated with ApolloMD that may have been impacted by the data breach include the Pensacola Hospitalist Physicians, LLC based in Florida and the Broad River Physicians Group, LLC based in South Carolina.8,9
WHAT HAPPENED?
Recently, ApolloMD announced that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice shared on its website, on May 22, 2025, ApolloMD detected unusual activity in its information technology (IT) environment.1 As a result, ApolloMD launched an investigation to determine the nature of the incident.
Through its investigation, ApolloMD confirmed that the sensitive personal information and protected health information of affiliated practices’ patients may have been accessed and/or acquired by an unauthorized third party between May 22 and May 23, 2025.1 As a result, ApolloMD began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Date of birth
- Address
- Medical information (diagnosis information, provider names, dates of service, treatment information)
- Health insurance information
On September 15, 2025, ApolloMD posted notice of the data breach to its website. Additionally, between July 21 and September 11, 2025, ApolloMD notified its affiliated physician practices of the breach, and on September 17, 2025, notification letters began being mailed to impacted individuals.1 Based on the website breach notice, ApolloMD is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services.1 A link to website breach notice is below.
If you received a breach notification letter from ApolloMD Business Services LLC:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
LINKS:
[3] https://www.linkedin.com/company/apollomd/about/
[4] https://apollomd.com/who-we-are/
[5] https://apollomd.com/services/emergency-medicine/
[6] https://apollomd.com/services/hospital-medicine/
[7] https://apollomd.com/services/value-added-services/
[8] https://mm.nh.gov/files/uploads/doj/remote-docs/pensacola-hospitalist-physicians-20250918.pdf
