Michigan Orthopaedic Surgeons

Michigan Orthopaedic Surgeons (MOS) experienced a data breach that was identified on June 29, 2023, after suspicious activity was detected in an employee’s email account. The unauthorized access to the email account occurred between May 5, 2023, and June 21, 2023. A forensic security firm was engaged to assist with the investigation, which determined that an unknown, unauthorized third party had accessed the account.

The comprehensive review of the account’s contents revealed that it contained personal information of certain individuals. Depending on the individual, this information included names, dates of birth, Social Security numbers, financial account numbers, usernames and passwords, health insurance information, and medical information such as diagnoses, lab results, and prescription information. On October 20, 2023, MOS concluded its review and determined the nature of the personal information involved.

MOS began mailing notification letters to affected individuals on December 19, 2023, for whom they had valid mailing addresses. The organization has also arranged for complimentary credit monitoring services for those whose Social Security numbers were potentially involved. MOS advised individuals to remain vigilant by monitoring their account statements and credit reports closely to protect against potential fraud and identity theft. They also recommended that individuals review tips provided by the Federal Trade Commission (FTC) on fraud alerts, security/credit freezes, and steps to avoid identity theft.

MOS has expressed its commitment to privacy and the safeguarding of personal information, apologizing for any inconvenience the incident may have caused. They have provided further assistance through a confidential, toll-free inquiry line and an email address for those seeking more information or assistance regarding the breach[1].

Citations:

1. https://miorthosurgeons.com/notice-of-a-data-incident/
2. https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf?ref=blog.gitguardian.com
3. https://www.crainsgrandrapids.com/news/health-care/grand-rapids-orthopedic-surgeons-move-to-trinity-health-as-federal-lawsuit-proceeds-against-former-practice-2/
4. https://www.beckersspine.com/orthopedic/56184-lawsuit-targets-michigan-orthopedic-practice-alleges-monopoly.html
5. https://miorthosurgeons.com
6. https://www.courts.michigan.gov/4a8e76/siteassets/case-documents/briefs/msc/2021-2022/161672/161672_54_01_answer.pdf
7. https://www.idstrong.com/sentinel/orthopaedic-surgeon-group-breached-by-vendor-cyberattack/
8. https://www.idstrong.com/sentinel/blackcats-mclaren-health-care-data-breach/
9. https://www.idstrong.com/sentinel/michigan-university-data-breach-after-network-hack/
10. https://ryortho.com/breaking/lawsuit-alleges-monopolistic-behavior-by-michigan-ortho-clinic/
11. https://miorthosurgeons.com/patient-information/
12. https://law.justia.com/cases/michigan/supreme-court/1978/59588-2.html
13. https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf
14. https://miorthosurgeons.com/patient-information/financial-policy/
15. https://www.linkedin.com/posts/hipaa-journal_data-breaches-have-recently-been-reported-activity-7160686745481592832-JkTQ
16. https://miorthosurgeons.com/contact/
17. https://www.michiganmedicine.org/news-release/michigan-medicine-notifies-patients-health-information-breach
18. https://www.crainsgrandrapids.com/news/health-care/west-michigan-orthopedic-practice-slams-trinity-health-lawsuit-as-a-money-grab-2/