Chestnut Cambronne PA is investigating claims on behalf of victims of a data breach involving Southern Orthopaedic Associates d/b/a Orthopaedic Institute of Western Kentucky (“SOA/OIWKY”).
According to a recent press release issued by SOA/OIWKY, on or about July 7, 2021, SOA/OIWKY “became aware of suspicious activity relating to an employee email account.” Its investigation later determined that an “unauthorized individual accessed several employee email accounts between June 24, 2021 and July 8, 2021,” and that these email accounts contained the sensitive personal information of its patients. In a separate notification provided to the Maine Attorney General, SOA/OIWKY disclosed that the data breach exposed the sensitive data of 106,910 people.
According to a sample notice letter provided to the Maine Attorney General, SOA/OIWKY did not begin notifying victims of the data breach until December 20, 2021. Neither the letter provided to the Maine Attorney General nor the press release explain how the “unauthorized individual” gained access to “several” of its employee email accounts or why it did not detect this sooner.
In its press release, SOA/OIWKY states the following data of its patients may have been exposed:
If you would like to have a free, confidential consultation with an attorney to learn more about your rights and potential legal remedies in response to the Orthopaedic Institute of Western Kentucky data breach, please contact Chestnut Cambronne PA attorney Bryan Bleichner at (612) 339-3700 or email us at email@example.com.