Arietis Health, LLC
Your Personal Info Could Be
Exposed Online After
This Hospital Breach
Breach Description
Arietis Health, LLC, a healthcare billing company based in Fort Myers, Florida, experienced a significant data breach in May 2023. The breach was announced after the company discovered that unauthorized actors had exploited a vulnerability in the MOVEit file-transfer application, potentially accessing and acquiring sensitive patient data. The compromised information includes names, dates of birth, driver’s license numbers, state identification card numbers, addresses, Social Security numbers, medical record numbers, patient account numbers, health insurance information, diagnosis and treatment information, clinical and prescription information, and provider information[1][3][5][10][14].
The breach affected patients of NorthStar Anesthesia facilities, among others, and the total number of individuals impacted is reported to be nearly 1.9 million[14]. Arietis Health began sending out data breach notification letters to the affected individuals on October 2, 2023[3]. The company has also offered complimentary credit and identity monitoring services to those impacted and has established a toll-free call center to address concerns related to the incident[14].
Wolf Haldenstein Adler Freeman & Herz LLP, a consumer rights law firm, is investigating claims on behalf of the patients whose information may have been stolen and potentially offered for sale on the dark web[1]. Additionally, several law firms are investigating or have filed lawsuits against Arietis Health, LLC, related to the data breach, exploring the legal options available to the victims[9][11][13][15].
Arietis Health has taken steps to address the breach, including securing and patching the MOVEit server and working with cybersecurity experts to investigate the incident[3]. The company has also emphasized its commitment to the privacy and protection of the information it maintains and has expressed regret for any inconvenience or concern caused by the incident[14].
The breach serves as a stark reminder of the importance of robust data security practices and the need for timely vulnerability patching to protect sensitive information from unauthorized access[5].
Citations:
- https://www.prnewswire.com/news-releases/arietis-health-llc-data-breach-alert-issued-by-wolf-haldenstein-adler-freeman–herz-llp-301946244.html
- https://www.trinity-health.org
- https://www.jdsupra.com/legalnews/arietis-health-llc-announces-moveit-2472384/
- https://smartasset.com
- https://www.linkedin.com/pulse/data-breach-alert-arietis-healths-shocking-2023-crisis-jason-collins
- https://www.arietishealth.com
- https://eu.usatoday.com
- https://www.reddit.com/r/CyberNews/comments/170digl/arietis_health_llc_announces_moveit_data_breach/
- https://www.thelyonfirm.com/blog/arietis-health-data-breach-investigation/
- https://www.hipaajournal.com/aretis-health-notifies-54-entities-about-exposure-of-patient-data/
- https://www.myinjuryattorney.com/arietis-health-data-breach-investigation/
- https://dockets.justia.com/docket/florida/flmdce/2:2023cv00890/419589
- https://www.turkestrauss.com/2023/10/04/arietis-health-data-breach-investigation/
- https://www.paubox.com/news/arietis-health-reports-moveit-vulnerability-data-breach-impacting-1.9-million
- https://www.classaction.org/media/swekoski-v-arietis-health-llc-et-al.pdf