MedInform, Inc.

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

MedInform, Inc., a healthcare information technology company based in Independence, Ohio, experienced a data breach that was first detected on December 21, 2022, when suspicious activity was identified on their network[1][3][11]. The breach was reported to federal law enforcement and an investigation was launched, which determined that an unauthorized actor had accessed certain computer systems between December 5 and December 21, 2022[11].

The compromised information included names, addresses, Social Security numbers, medical billing information, and financial account information of Cleveland Clinic patients[1][3][11]. The breach potentially affected 14,453 patient files[12]. MedInform began sending out data breach notification letters to all impacted individuals on May 24, 2023[1][3].

In response to the breach, MedInform reviewed and enhanced specific administrative and technical controls, and offered complimentary access to Experian IdentityWorksSM for 24 months to help protect the identities of those affected[11]. Individuals who received a data breach notification were advised to enroll in free credit monitoring services provided by MedInform, change passwords and security questions for online accounts, regularly review account statements, monitor credit reports, and contact a credit bureau to request a temporary fraud alert[3].

Several law firms are investigating the incident and considering legal action on behalf of the victims[3][5][7][9][12]. MedInform, which specializes in accident recovery and itemization solutions, has been in business for over 21 years and is known for creating products aimed at streamlining clinical workflows and improving patient care[3].

Citations:

  1. https://www.jdsupra.com/legalnews/medinform-inc-announces-data-breach-6424529/
  2. https://amia.org
  3. https://www.turkestrauss.com/2023/05/30/medinform-data-breach-investigation/
  4. https://www.hipaajournal.com/may-2023-healthcare-data-breach-report/
  5. https://4classaction.com/2023/07/24/fbfg-investigating-medinform-inc-data-breach/?utm_campaign=fbfg-investigating-medinform-inc-data-breach&utm_medium=rss&utm_source=rss
  6. https://colevannote.com/investigations/
  7. https://www.myinjuryattorney.com/medinform-inc-data-breach-investigation/
  8. https://www.chiefhealthcareexecutive.com/view/the-11-biggest-health-data-breaches-in-2022
  9. https://www.msdlegal.com/blog/2023/05/medinform-data-breach-class-action-investigation/
  10. https://bmcmedinformdecismak.biomedcentral.com/articles/10.1186/s12911-020-01161-7
  11. https://www.mass.gov/doc/assigned-data-breach-number-29674-medinform-inc/download
  12. https://www.lawampm.com/medinform-data-breach/
  13. https://www.medinforminc.com
Breach Submission Date May 24, 2023
Converted Entity Name MedInform, Inc.
Converted Entity Type Business Associate
State OH
Individuals Affected 14,453
Breach Type Hacking/IT Incident

Breach Information Location Network Server

Business Associate Present Yes