Migliaccio & Rathod LLP is involved in the PIH Health Data Breach Investigation, regarding a breach that impacted 17 million individuals and their personal information.
On December 1, 2024, PIH Health fell victim to a massive ransomware attack that affected its computer network and phone systems across numerous locations, such as PIH Health Downey Hospital, PIH Health Good Samaritan Hospital, PIH Health Whittier Hospital, urgent care centers, doctor’s offices, home health, and hospice services. Additionally, the cyberattack caused outages of PIH Heath systems, interrupting access to patient health records, laboratory systems, pharmacy, radiology, patient registration tools, internet access and phone systems. According to the cybercriminals allegedly responsible for the attack, the compromised information includes, but may not be limited to, the following sensitive data:
- data regarding more than 8.1 million “medical episodes”
- physical addresses
- places of employment
- medical expenses
- confidential diagnoses
- test results
- patient photos
- scans
- treatment information, including data involving cancer treatments
- PIH’s oncology profitability and monthly volumes.
- private emails with patients about their treatments and test results.
- about 100 active nondisclosure agreements between PIH and other medical organizations and parties.
- confidentiality agreements with employees
PIH Health Data Breach
PIH Health has notified affected parties of the data breach. All of the information stolen is likely valuable and dangerous to affected victims. As is likely to be the case with the PIH Health data breach, in previous cyberattacks, victims of data theft have noticed identity theft attempts ranging from fraudulent charges on bank accounts or credit cards, to unauthorized credit card applications, to medical services or government services ordered in their name, to their information being posted on the dark web, to a massive uptick in the number of spam text messages, calls and emails received.
Are you a patient or an employee of PIH Health concerned that you might be affected by this data breach?
If you have concerns that you have been affected by this data breach, and/or have experienced suspicious activity since December 1, 2024, we would like to hear from you. Please complete the contact form on this page, send us an email at [email protected], or give us a call at (202) 470-3520.
The lawyers at Migliaccio & Rathod LLP have years of experience in class action litigation against large corporations, including in cases involving data breaches such as this. More information about our current cases and investigations is available on our blog.