Beginning April 7, 2025, Alabama Ophthalmology Associates began notifying current and former patients about a January 2025 network breach. The breach allowed an unauthorized character to access and acquire approximately 131,000 patients’ names, dates of birth, Social...
30 Years Of Practice.
Year: 2025
Alternate Solutions Health Network (“ASHN”) Data Breach Investigation
Alternate Solutions Health Network (“ASHN”) partners with healthcare providers by providing home health programs and hospice care to patients. A list of some of the 44 hospitals and home health programs partnering with ASHN is provided below. On or about May 30, 2024,...
Kelly & Associates Insurance Group, Inc. (“Kelly Benefits”) Data Breach Investigation
According to Kelly Benefits (otherwise known as Kelly & Associates Insurance Group, Inc.), the organization is one of the nation’s largest and fastest-growing providers of payroll and benefits administration services to businesses. Between December 12 and December...
Onsite Mammography, LLC
Across the nation, Onsite Mammography supports health care providers - such as OB/GYN and primary care practices- with imaging services. By partnering with Onsite Mammography, healthcare providers can offer in-office mammograms. On April 21, 2025, Onsite Mammography...
Nationwide Recovery Service, Inc.(“NRS”) Data Breach Investigation
Nationwide Recovery Service, Inc. (“NRS”) is a debt collector for healthcare providers including Hamilton County Emergency Services (“EMS”) (TN), Vitruvian Health dba Hamilton Health Care System, Inc. (TN and GA), Rhea Medical Center (TN), Select Medical Holdings, and...
Data Breach Investigation involving Cleo Communications and Hertz, Dollar and Thrifty (“Hertz”)
Hertz, Dollar, and Thrifty (“Hertz”) utilize Cleo Communications’ file transfer system (“FTS”). Though Hertz’ specific use of the Cleo FTS is unknown, in some cases, FTS is used to transfer employee files between organizations. According to a report filed with a state...
Medical Express Ambulance Inc. dba MedEx Ambulance Data Breach Investigation
A year after 118,418 individuals had their personally identifiable information (“PII”) and protected health information (“PHI”) compromised, MedEx Ambulance (“MedEx”) provided notification to the affected individuals. On March 18, 2024, an unauthorized party gained...
Blue Shield of California and Google Data Breach Investigation
According to an April 9, 2025 report submitted by Blue Shield of California to the California Attorney General, between April 21, 2021 and January 2024, a Google Analytics configuration allowed insureds’ protected health information (“PHI”) to be shared with Google...
Laboratory Services Cooperative (“LSC”) Data Breach Investigation
Laboratory Services Cooperative (“LSC”) provides testing services to select Planned Parenthood (“PP”) centers in Alaska, Hawaii, Idaho, Indiana, Kentucky, and Washington, also known as “Planned Parenthood Great Northwest, Hawaii, Alaska, Indiana, Kentucky or...
Matthew Weiss, University of Michigan and Keffer Development Services [aka Athletic Trainer System(“ATS”)] Data Breach Investigation
Keffer Development Services [aka Athletic Trainer System("ATS")] produces software used by athletic trainers, medical professionals, athletes, students, coaches, administrators, and parents. The "ATS" data base includes student-athletes’ personal information. Between...

