Eye Care Leaders Data Breach Investigation

By Bruno OrtegaConsumer Protection, Data Breach, Deceptive Trade Practice

Migliaccio & Rathod LLP is currently investigating the Durham, North Carolina-based Eye Care Leaders for failing to safeguard sensitive patient information in a data breach that occurred in December of 2021.  The incident occurred when the patient management software company discovered suspicious activity on its systems, likely as the result of a ransomware attack.  An investigation into the attack found that an unauthorized actor had gained access to files that contained names, dates of birth, medical record numbers, health insurance information, Social Security numbers, and information regarding the care received at affected eye care practices.

Some of the affected eye care practices affected by the data breach at Eye Care Leaders include:

  • Texas Tech University Health Science Center
  • Regional Eye Associates, Inc. & Surgical Eye Center of Morgantown in West Virginia
  • Precision Eye Care in Missouri
  • Shoreline Eye Group in Connecticut
  • Summit Eye Associates in Tennessee
  • AU Health in Georgia
  • Finkelstein Eye Associates in Illinois
  • Moyes Eye Center, PC in Missouri
  • McCoy Vision Center in Alabama
  • Chesapeake Eye Center in Maryland
  • Frank Eye Center in Kansas
  • Lori A. Harkins MD, P.C. dba Harkins Eye Clinic in Nebraska
  • Allied Eye Physicians & Surgeons in Ohio
  • EvergreenHealth in Washington
  • Sylvester Eye Care in Oklahoma
  • Arkfeld, Parson, and Goldstein, d/b/a Ilumin in Nebraska
  • Associated Ophthalmologists of Kansas City, P.C. in Missouri
  • Northern Eye Care Associates in Michigan
  • Ad Astra Eye in Arkansas
  • Fishman Vision in California
  • Burman & Zuckerbrod Ophthalmology Associates, P.C. in Michigan

Although Eye Care Leaders investigated the incident and began sending notification letters to affected eye care practices, the company noted that the breach occurred in December of 2021.  Due to the lapse in time between the breach and the company’s notice to affected practices, hackers may have already been able to acquire and sell sensitive patient information such as social security numbers.  In previous data breaches, victims of data theft have been forced to spend money on credit monitoring services or other fraudulent charges.  Some individuals affected by the data breach may have noticed one or more of the following types of fraudulent activity related to their healthcare information: suspicious credit card charges, requests for government services or loans, medical procedures ordered without patient consent, and/or disrupted use of the institution’s patient portal.

Have you recently received a data breach notification letter from Eye Care Leaders?

If so, we would like to hear from you.  Please complete the contact form on this page, send us an email at [email protected], or give us a call at (202) 470-3520.

The lawyers at Migliaccio & Rathod LLP have years of experience in class action litigation against large corporations, including in cases involving data breaches.  More information about our current cases and investigations is available on our blog.