Regional Family Medicine

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

Regional Family Medicine, a primary care practice based in Mountain Home, Arkansas, experienced a significant data breach that was confirmed on December 12, 2023. The breach, which was initially thought to be an IT outage, turned out to be a cyberattack that allowed an unauthorized party to access sensitive consumer information. The types of compromised data include names, Social Security numbers, driver’s license or state identification numbers, dates of birth, biometric data, medical information, health insurance information, account numbers, and workplace evaluations[1].

The breach occurred over a period from June 8, 2023, to June 26, 2023, and affected approximately 80,166 individuals. Regional Family Medicine has since sent out notification letters to all individuals whose information was affected by the security incident[1].

In response to the breach, Regional Family Medicine has been working with third-party data security specialists to investigate the incident and has taken steps to enhance their IT security to prevent future breaches. They have also reported the incident to the Federal Bureau of Investigation, Homeland Security, and the Arkansas State Police[3].

As a result of the data breach, Regional Family Medicine is offering 12 months of free credit monitoring and identity theft protection services to those affected. Additionally, there is an ongoing investigation to determine whether a class action lawsuit can be filed, and attorneys are seeking to hear from individuals impacted by the breach[5].

Regional Family Medicine operates two clinics in Mountain Home, AR, and provides a range of primary care services, including radiology and minor surgeries. The practice employs more than 70 people and generates approximately $8 million in annual revenue[1].

Citations:

  1. https://www.jdsupra.com/legalnews/regional-family-medicine-confirms-data-4926313/
  2. https://www.mercycare.org
  3. https://abingtonlaw.com/Regional-Family-Medicine-Data-Breach-class-action-lawsuit.html
  4. https://ufhealth.org
  5. https://www.classaction.org/data-breach-lawsuits/regional-family-medicine-december-2023
  6. https://www.humana.com
  7. https://www.myinjuryattorney.com/regional-family-medicine-data-breach-investigation-and-lawsuit-assistance/
  8. https://ufhealthjax.org
  9. https://www.ktlo.com/2023/12/18/regional-family-medicine-alerts-patients-of-data-incident/
  10. https://www.daytondailynews.com/business/soin-family-suing-kettering-health-for-alleged-breach-of-contract-over-naming-rights/WDO475ACSZDBZN3LXPFPWV3JMM/
  11. https://www.turkestrauss.com/2023/12/13/regional-family-medicine-data-breach-investigation/
  12. https://www.forresthealth.org
  13. https://apps.web.maine.gov/online/aeviewer/ME/40/68166619-cbd3-4640-9fbd-12098d96009d/41939700-1a28-409c-b7ce-5a7193e38837/document.html
  14. https://atriumhealth.org
  15. https://healthitsecurity.com/news/harrisburg-medical-center-data-breach-impacts-147k-individuals
  16. https://www.un.org/en/about-us/universal-declaration-of-human-rights
Breach Submission Date Dec 12, 2023
Converted Entity Name Regional Family Medicine
Converted Entity Type Healthcare Provider
State AR
Individuals Affected 80,166
Breach Type Hacking/IT Incident

Breach Information Location Network Server

Business Associate Present Yes