Lorien Health Services Data Breach Potentially Exposes 47,754 Patients’ Sensitive Records

Identity theft is a multi-billion dollar problem.  Although many companies have responded to this threat appropriately, some continue to risk theft of the sensitive personal and medical information entrusted to them by consumers and patients.  Unfortunately, it appears Lorien Health Services in Maryland failed to protect the sensitive patient information of approximately 47,754 patients.

Lorien Health Services runs nine nursing homes and elder care facilities in Baltimore, Howard, Harford, and Carroll counties.

According to various news sources, “hackers allegedly stole their data before deploying the ransomware.  The data was then posted for sale on the dark web after Lorien refused to pay the ransom demand, with the hackers publishing screenshots of the information allegedly stolen during the attack.”  According to Lorian Health Services, the breached information may have included sensitive patient information such as patients’ names, addresses, dates of birth, Social Security numbers, health diagnoses, and treatment information for approximately 47,754 patients.

Cybercriminal use personal information with the primary incentive of using that private data to commit identity theft and financial fraud.  Identity theft wreaks havoc on consumers’ finances, credit history, and reputation and can take time, money, and patience to resolve.  Identity thieves use stolen personal information for a variety of crimes, including credit card fraud, phone or utilities fraud, banking or finance fraud, government fraud, and medical identity theft.  Moreover, a person whose personal information has been compromised may not see the full extent of identity theft or fraud for years.

Disclosure of personal information and medical information is unlawful, and the attorneys at Finkelstein, Blankinship, Frei-Pearson & Garber, LLP have successfully brought lawsuits on behalf of victims of such disclosures.  If you visited Lorian Health Services, then your information may have been stolen.  Please contact FBFG to explore your rights.