Regional Care Group Cyber Attack Exposes Identities of 225k Patients. Featured
Class action lawsuit alleges Regional Care Group’s failure to protect personal data according to industry standards enabled data breach.
A class action lawsuit was filed against Regional Care Group Inc. after it announced on December 16th that it was the target of a September cyberattack. The lawsuit alleges that the cyberattack was made possible by Regional Care’s failure to secure its protected information according to federal industry guidelines.
What Happened?
According to information listed on the Office of the Attorney General of Maine’s website, on September 18, 2024, Regional Care, Inc. (“Regional Care” or “RCI”) detected suspicious activity on its computer network, indicating a data breach. Based on a subsequent forensic investigation, Regional Care determined that cybercriminals infiltrated its inadequately secured computer environment and thereby gained access to its data files. The investigation further determined that, through this infiltration, cybercriminals potentially accessed and copied files containing the sensitive personal information of 225,728 individuals.
What Information was Exposed in the Data Breach?
The information exposed in the data breach includes, but is not limited to:
- Names
- Social Security numbers
- Date of Birth
- Medical Information
- Health Insurance Information.
Regional Care has begun the process of notifying patients affected by the breach.
What is Regional Care Doing To Protect My Identity?
According to the Notice Letters being mailed to affected patients, Regional Care is offering identity theft protection services for a limited period of time. It is also asking affected individuals to always remain vigilant for incidents of fraud and identity theft, including by regularly reviewing your account statements and monitoring credit reports. If you discover any suspicious or unusual activity on your accounts or suspect identity theft or fraud, be sure to report it immediately to your financial institutions.
The lawsuit seeks, in addition to damages, lifetime identity theft protection for those affected by the data breach.
What Can Hackers Do With My Information?
Stolen PII and PHI can be used to commit identity theft, open new credit accounts, make unauthorized purchases or obtain loans. Cybercriminals have recently targeted America’s essential industries and in so doing have forced millions of Americans to face the fallout from these attacks.
Leaked or stolen data can be sold on the dark web forums and may be used for fraud and medical identity theft, a type of fraud, where threat actors use stolen information to submit forged claims to insurers.
Clients affected by the breach are exposed to a heightened and imminent risk of fraud and identity theft. They must now and in the future closely monitor their financial accounts to guard against identity theft and fraud.
If you receive a data breach notification from Regional Care it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options at no cost to you. For more information, please review these recommendations.
Protect Your Identity. Join the Regional Care Data Breach Class Action.
The lawsuit alleges that Regional Care breached its duties under common law and the Federal Trade Commission Act to implement reasonable security measures, comply with industry standards and federal data-security regulations, encrypt sensitive data, and provide adequate and timely notice of the breach.
If you receive a notification letter from Regional Care you are at permanent risk of identity theft and the devastating financial and legal consequences that go along with it.
You may be eligible to participate in a class action lawsuit to recover compensation for loss of privacy, time spent dealing with the breach, out-of-pocket costs, and identity theft protection services.
The lawsuit looks to cover anyone in the USA whose private information was compromised by the breach announced by Regional Care on December 16th, 2024.
Please complete the form shown on this page and a data breach attorney will contact you. There is no cost to you.