On March 12, 2024, CCM Health filed a notice of data breach with the Attorney General of Montana after discovering that unauthorized actors were able to access the company’s IT network. In this notice, CCM Health explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, addresses, dates of birth, driver’s license or other state identification numbers, passport numbers, Social Security numbers, financial account numbers, routing numbers, payment card numbers, health insurance information, and medical information. Upon completing its investigation, CCM Health began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from CCM Health, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the CCM Health data breach. For more information, please see our recent piece on the topic here.
What Caused the CCM Health Data Breach?
The CCM Health data breach was only recently announced, and more information is expected in the near future. However, CCM Health’s filing with the Attorney General of Montana provides some important information on what led up to the breach. According to this source, recently, CCM Health learned that an unauthorized party had gained access to its computer system. In response, CCM Health secured its network in hopes of containing the incident. Next, the company launched an investigation with the help of third-party cybersecurity specialists.
On February 12, 2024, CCM Health’s investigation confirmed that an unauthorized party had indeed accessed its network between April 3, 2024 and April 10, 2023. During this time, the unauthorized party was able to access files containing confidential patient information.
After learning that sensitive consumer data was accessible to an unauthorized party, CCM Health reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, address, date of birth, driver’s license number, state identification number, passport number, Social Security number, financial account number, routing number, payment card number, health insurance information, and medical information.
On March 12, 2024, CCM Health sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About CCM Health
CCM Health is a healthcare provider based out of Montevideo, Minnesota. CCM Health provides a wide range of services through a network of three clinics located in Milan, Clara City, and Montevideo. CCM Health’s services include primary care, pediatric care, behavioral health, hospice care, cardiology, imaging and more. CCM Health employs more than 318 people and generates approximately $35 million in annual revenue.
