CaptureRx hacked – 1,656,669 victims in massive data breach

If you have been a patient at any of the below-listed hospitals, you may have been negatively affected by a data breach of a health IT company that helps hospitals manage drug programs.  The compromised files included patient records, health information, prescription details, birthdates, and names.  The hospitals include:

  • Faxton St. Luke’s Healthcare, an affiliate of Mohawk Valley Health System (Utica, N.Y.): 17,000+
  • Trinity Twin City Hospital (Dennison, Ohio): 9,500+
  • Jones Memorial Hospital (Rochester, N.Y.): 8,962
  • Hudson Headwaters Health Network (Queensbury, N.Y.): 8,100
  • UPMC Cole (Coudersport, Pa.) and UPMC Wellsboro (Pa.): 7,400
  • Gifford Health Care (Randolph, Vt.): 6,777
  • Ascension St. Joseph Hospital (Tawas City, Mich.): 5,807
  • Brownsville Community Health Center, an affiliate of New Horizon Medical Center: 4,258
  • Massena (N.Y.) Hospital: 1,897
  • Lourdes Hospital (Binghamton, N.Y.): 1,745
  • Ascension Standish (Mich.) Hospital: 1,705
  • Adirondack Health (Saranac Lake, N.Y.): 800+
  • Kaleida Health (Buffalo, N.Y.): 600
  • Bayhealth (Dover, Del.): 565
  • MetroHealth System (Cleveland): Unknown
  • Penobscot Community Health Care (Bangor, Maine): Unknown
  • Walmart: Unknown

Patients were likely required to share their personal and sensitive information in order to receive their healthcare.  In turn, these healthcare institutions owe a duty to protect this information.  However, CaptureRx failed to honor this duty when it allegedly allowed cybercriminals to access the information in these sensitive files.

During this time, patients’ sensitive information has been exposed to cybercriminals and may soon be, it not already, fraudulently used.  Attorneys at Finkelstein, Blankinship, Frei-Pearson & Garber, LLP have successfully recovered millions of dollars on behalf of data breach victims.  We are currently investigating this matter, as well as other data breaches.  If you believe that your information may have been unlawfully accessed, please contact us to discover your legal options.