Meridian Behavioral Healthcare, Inc.

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

In August 2023, Meridian Behavioral Healthcare, Inc., a Florida-based behavioral health provider, experienced a significant data breach. The unauthorized activity within its computer systems was first discovered on August 11, 2023. Following the discovery, Meridian took immediate steps to secure its network, including resetting passwords and engaging a third-party forensic firm to investigate the full nature and scope of the incident[1][4][12].

The investigation revealed that the breach potentially impacted the personal health information (PHI) of 98,808 individuals[2]. The types of information exposed varied from person to person but could have included names, addresses, birth dates, Social Security numbers, medical diagnosis and treatment data, medical insurance data, and prescription details[2]. Despite the breach, Meridian stated that it was not aware of any misuse of the affected patient data. However, the organization has offered affected individuals free credit monitoring services and advised them to remain vigilant by monitoring their account statements and credit reports for signs of identity theft or fraud[1][6].

In response to the breach, Meridian Behavioral Healthcare has implemented additional security measures within its network and is reviewing and updating its data security policies and procedures to better protect patient data[1][8]. The organization has also established a hotline to answer questions about the incident and address related concerns[1].

Meridian Behavioral Healthcare, Inc. is a private, non-profit mental health care organization that was founded in 1972. It provides a range of services including crisis stabilization, rehabilitation, outpatient care, and outreach to vulnerable populations, with over 600,000 direct care visits a year across its facilities in North Central Florida[10].

Affected individuals were notified of the breach through letters sent out on December 22, 2023, and were provided with information on how to protect themselves from potential identity theft and fraud[4][6].

Citations:

  1. https://www.mbhci.org/2023-data-security-incident/
  2. https://www.defensorum.com/data-breach-reports-by-electrostim-medical-services-meridian-behavioral-healthcare-and-network-180/
  3. http://www.newbridgehealth.org
  4. https://www.jdsupra.com/legalnews/meridian-behavioral-healthcare-notifies-5920422/
  5. https://www.torrancememorial.org
  6. https://www.forthepeople.com/blog/meridian-behavioral-healthcare-patients-ssns-are-affected-due-data-breach-2023/
  7. https://www.ecommunity.com
  8. https://www.hipaajournal.com/meridian-behavioral-healthcare-data-breach/
  9. https://www.hrc.org
  10. https://www.turkestrauss.com/2023/12/29/meridian-behavioral-healthcare-data-breach-investigation/
  11. https://www.upmchealthplan.com
  12. https://www.myinjuryattorney.com/meridian-behavioral-healthcare-data-breach-class-action-investigation-and-lawsuit-assistance/
  13. https://www.stjosephshealth.org
  14. https://www.mass.gov/doc/assigned-data-breach-number-31224-meridian-behavioral-healthcare-inc/download
  15. https://www.umc.edu
  16. http://news.websitegear.com/view/1370690/Meridian_Behavioral_Healthcare%2C_Inc._Provides_Notification_of_Data_Security_Incident
  17. https://integrisok.com
Breach Submission Date Dec 22, 2023
Converted Entity Name Meridian Behavioral Healthcare, Inc.
Converted Entity Type Healthcare Provider
State FL
Individuals Affected 98,808
Breach Type Hacking/IT Incident

Breach Information Location Network Server

Business Associate Present Yes