Data Breach Investigation of Leaked South Shore Hospital Patient and Employee Information

Migliaccio & Rathod LLP is currently investigating the Chicago-based South Shore Hospital network (“SSH”) for failing to safeguard sensitive patient information in a data breach that occurred in December of 2021. The incident occurred when the hospital network discovered suspicious activity on its systems, likely as the result of a ransomware attack. An investigation into the attack found that an unauthorized actor had gained access to files that contained patients’ and employees’ first and last names, addresses, dates of birth, Social Security numbers, financial information, health insurance information, medical information, diagnoses, health insurance policy numbers, and Medicare and Medicaid information.

Although SSH investigated the incident and began sending notification letters to affected individuals in February of 2022, the hackers may have already been able to acquire and sell patient and employee information such as social security numbers, health insurance information, personal identifiers, and other important health information. In previous data breaches, victims of data theft have been forced to spend money on credit monitoring services or other fraudulent charges. Some individuals affected by the data breach may have noticed one or more of the following types of fraudulent activity related to their healthcare information: suspicious credit card charges, requests for services or loans in their name, medical procedures ordered without patient consent, and/or disrupted medical care.

Are you or have you been a South Shore Hospital patient or employee who has received a data breach notification letter in the past year?

If so, we would like to hear from you. Please complete the contact form on this page, send us an email at [email protected], or give us a call at (202) 470-3520.

The lawyers at Migliaccio & Rathod LLP have years of experience in class action litigation against large corporations, including in cases involving data breaches. More information about our current cases and investigations is available on our blog.