According to a report filed with a governmental entity, Kellogg uses a file transfer service (“FTS”) produced by Cleo to electronically transfer employee files to its human resource service vendors. Allegedly, a vulnerability in the “FTS” resulted in a December 7,...
30 Years Of Practice.
Year: 2025
Oracle Health Data Breach Investigation
Oracle Health is a third-party service provider of electronic health record (“EHR”) applications. Some hospitals that may utilize Oracle Health EHR include: Union Health System (IN) Tallahassee Memorial Healthcare (FL) IU Health Methodist Hospital (IN) Northside...
Ortho minds, LLC Data Breach Investigation
Orthominds, LLC is an orthodontic management software platform used by orthodontic practices. The software assists practices with services such as billing, insurance filing, and scheduling. During a ten-day period in November 2024, an undisclosed number of individuals...
CDHA Management, LLC and Spark DSO, LLC dba Chord Specialty Dental Partners
Chord Specialty Dental Partners (“Chord”) is a provider of business and operational support services to sixty dental practices located in Indiana, Delaware, Pennsylvania , Tennessee and Virginia. More than 173,000 patients had their identity put at risk when an...
ALN Medical Management, LLC Data Breach Investigation
ALN Medical Management (“ALN”) provides billing services and revenue recycle management to healthcare providers such as National Spine and Pain (Maryland), Inpatient Physician Associates (Nebraska), Hoag Clinic (California), and Allied Physicians Group (New York)....
St. Joseph’s College of Maine (“SJCM”) Data Breach Investigation
Between December 15, 2023 and January 24, 2024, an unauthorized party gained access to SJCM’s network compromising 126,580 individuals’ personally identifiable information (“PII”) and protected health information (“PHI”). The PII and PHI that was compromised includes...
Watsonville Community Hospital Data Breach Investigation
Watsonville Community Hospital is a healthcare provider serving Monterey Bay, Central Coast and Santa Cruz County California. On or about November 29, 2024, the hospital experienced a cybersecurity event; and, since the event, some employees have reported fraudulent...
California Cryobank LLC Data Breach Investigation
California Cryobank LLC (“CCB”) is a sperm bank and serves as a resource for frozen donor sperm, private semen cryopreservation, egg and embryo storage and artificial insemination guidance. Because of an April 20-April 21, 2024 breach of CCB’s network by an...
Pennsylvania State Education Association (“PSAE”) Data Breach Investigation
Pennsylvania State Education Association (“PSAE”) is reportedly the largest public sector union in Pennsylvania. Its members include K-12 teachers, education support staff, higher education faculty, nurses in healthcare facilities, retired educators, and college...
Community Care Alliance Data Breach Investigation
Community Care Alliance (“Agency”) offers programs and services to individuals seeking support for mental illness, addiction, housing and trauma related issues. After a July 6, 2024 network disruption, the Agency learned an unauthorized character had accessed its...

