Bienville Orthopaedic Specialists LLC

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

Bienville Orthopaedic Specialists LLC, an orthopaedic care provider based in Gautier, Mississippi, experienced a significant data breach that was first discovered on March 5, 2023. The breach resulted in unauthorized access to the company’s IT network, leading to the potential compromise of sensitive information belonging to as many as 242,986 individuals[2][4]. The types of information accessed included names, Social Security numbers, medical information, health insurance information, usernames and passwords, financial account information, and driver’s license numbers[4].

The medical provider confirmed that the cyberattack occurred between February 3 and March 5, 2023, with data being subject to unauthorized acquisition on March 4, 2023[3][4]. Despite discovering the breach in early March, Bienville Orthopaedic Specialists did not begin notifying affected patients until September 1, 2023[1][2][3][4].

Multiple lawsuits have been filed against the company, with allegations including negligence, breach of implied contract, and unjust enrichment due to the failure to invest in adequate data security[1]. The lawsuits are seeking class-action status, compensatory damages, payment for credit-monitoring services, and an order for Bienville to improve data security[2]. The company’s CEO, Lee Bond, has stated that they are considering legal action to have the lawsuits declared frivolous and that they are not aware of any patient information being misused. The cyber attackers reportedly asked for a ransom, but it has not been disclosed whether a ransom was paid[1].

In response to the breach, Bienville Orthopaedic Specialists has implemented additional technical safeguards and is offering affected individuals access to complimentary credit monitoring and identity protection services through Equifax[5]. The company has also notified law enforcement and is taking the incident seriously[5].

The breach has been reported to the Attorney General of Maine and the HHS’ Office for Civil Rights, among other authorities[4][7][8]. It is one of the largest data breaches reported on the Mississippi Gulf Coast, where Bienville Orthopaedic Specialists is the largest provider of orthopaedic care[9][10].

Citations:

  1. https://www.sunherald.com/news/business/article280160689.html
  2. https://www.beckersspine.com/orthopedic/57867-bienville-orthopaedic-specialists-sued-following-patient-data-breach.html
  3. https://www.supertalk.fm/patients-sue-biloxi-orthopedics-company-after-information-was-compromised-by-cyberattack/
  4. https://www.jdsupra.com/legalnews/bienville-orthopaedic-specialists-data-7807013/
  5. https://www.mass.gov/doc/assigned-data-breach-number-30453-bienville-orthopaedic-specialists-llc/download
  6. https://www.msdlegal.com/blog/2023/09/bienville-orthopaedic-specialists-llc-data-breach-class-action-investigation/
  7. https://apps.web.maine.gov/online/aeviewer/ME/40/b866d288-1452-459b-bfc9-c6da9481cfaf.shtml
  8. https://www.hipaajournal.com/cyberattacks-reported-by-bienville-orthopaedic-specialists-and-just-kids-dental/
  9. https://www.breachsense.com/breaches/bienville-orthopaedic-data-breach/
  10. https://www.thelyonfirm.com/blog/bienville-orthopaedic-specialists-data-breach-investigation/
  11. https://www.myinjuryattorney.com/bienville-orthopaedic-specialists-data-breach-investigation/
Breach Submission Date Sep 05, 2023
Converted Entity Name Bienville Orthopaedic Specialists LLC
Converted Entity Type Healthcare Provider
State MS
Individuals Affected 242,986
Breach Type Hacking/IT Incident

Breach Information Location Network Server

Business Associate Present Yes