Sigmund Software, LLC

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

Sigmund Software, LLC, a Connecticut-based company specializing in electronic health record software for healthcare providers, experienced a significant data breach on September 9, 2022. The breach involved sensitive personal identifiable information (PII) of current and former employees, including names and Social Security numbers. This incident was the result of a ransomware attack, where an unauthorized actor accessed and potentially acquired sensitive information, which may have been published on the dark web. Following the breach, Sigmund Software began notifying affected individuals on October 20, 2022, and offered free credit monitoring and identity protection services through Experian for 12 months[1][3][5].

The breach notification to affected Maine residents revealed that a total of 983 individuals were impacted by this breach, including one Maine resident. The company took steps to notify affected consumers and provided them with information on how to protect their personal information[3].

In response to the breach, affected individuals were advised to review their account statements and credit reports for signs of fraud or unauthorized activity, change passwords and security questions for online accounts, and consider placing a fraud alert on their credit files[1].

This incident is part of a larger trend of healthcare data breaches in Connecticut, with Sigmund Software’s breach being one of several reported in 2022. The breach at Sigmund Software was classified as a “Hacking/IT Incident” and affected 983 individuals, making it one of the significant healthcare data breaches in the state for that year[6].

Legal actions or investigations related to data breaches can involve various parties and complexities. For instance, a separate case involving Sigmund Software, LLC was noted in the jurisdiction of Fairfield County, CT, where Health Net Life Insurance Company and others filed a case against Sigmund Software, LLC, highlighting the legal entanglements that can arise from business operations and contractual relationships[8].

Overall, the data breach at Sigmund Software, LLC underscores the vulnerabilities faced by healthcare and technology companies in safeguarding sensitive personal and health information against cyberattacks and the importance of robust security measures and prompt response strategies to mitigate the impact on affected individuals.

Citations:

  1. https://www.turkestrauss.com/2022/10/27/sigmund-software-data-breach-investigation/
  2. https://dockets.justia.com/docket/connecticut/ctdce/3:2023cv01264/156109
  3. https://apps.web.maine.gov/online/aeviewer/ME/40/9e654f9a-6fa5-4f8c-bb64-911ac2f8744b.shtml
  4. https://www.justice.gov/usao-edpa/file/631551/dl
  5. https://www.mass.gov/doc/assigned-data-breach-number-28436-sigmund-software-llc/download
  6. https://stacker.com/connecticut/biggest-health-care-data-breaches-you-should-know-about-connecticut
  7. https://www.doj.nh.gov/consumer/security-breaches/s.htm
  8. https://trellis.law/case/9001/dbd-cv21-5017109-s/health-net-life-insurance-company-et-al-v-sigmund-software-llc
  9. http://ago.vermont.gov/document/2022-10-20-sigmund-software-data-breach-notice-consumers
  10. https://www.linkedin.com/company/sigmundsoftware
Breach Submission Date Oct 20, 2022
Converted Entity Name Sigmund Software, LLC
Converted Entity Type Business Associate
State CT
Individuals Affected 983
Breach Type Hacking/IT Incident

Breach Information Location Network Server

Business Associate Present Yes