Migliaccio & Rathod LLP is currently investigating the Southeast Kansas-based Labette Health for failing to safeguard sensitive patient information in a data breach that occurred in October of 2021. The incident occurred when the hospital network discovered suspicious activity on its systems, likely as the result of a ransomware attack. An investigation into the attack found that an unauthorized actor had gained access to files that contained patients’ full name and one or more of the following: Social Security number, medical treatment and diagnosis information, treatment costs, dates of service, prescription information, Medicare or Medicaid number, and/or health insurance information.
Although Labette Health investigated the incident and began sending notification letters to affected individuals in March of 2022, the medical center noted that the breach occurred in October of 2021, with an investigation of the information affected ending in early February of 2022. Due to the lapse in time between the breach, the end of the investigation, and the hospital network’s notice to affected patients, hackers may have already been able to acquire and sell sensitive patient information such as social security numbers. In previous data breaches, victims of data theft have been forced to spend money on credit monitoring services or other fraudulent charges. Some individuals affected by the data breach may have noticed one or more of the following types of fraudulent activity related to the loss of their healthcare information: suspicious credit card charges, requests for government services or loans, medical procedures ordered without patient consent, and/or disrupted use of the hospital’s patient portal.
Are you or have you been a Labette Health patient who has recently received a data breach notification letter?
If so, we would like to hear from you. Please complete the contact form on this page, send us an email at firstname.lastname@example.org, or give us a call at (202) 470-3520.
The lawyers at Migliaccio & Rathod LLP have years of experience in class action litigation against large corporations, including in cases involving data breaches. More information about our current cases and investigations is available on our blog.