On February 14, 2025, Somnia, Inc. filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering that the company’s email system was compromised by an unauthorized party. In this notice, Somnia explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, Social Security numbers, addresses, dates of birth, health information, and health insurance information. Upon completing its investigation, Somnia began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from Somnia, Inc., it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Somnia data breach. For more information, please see our recent piece on the topic here.
What Caused the Somnia Data Breach?
The Somnia data breach was only recently announced, and more information is expected in the near future. However, Somnia’s filing with the U.S. Department of Health and Human Services Office for Civil Rights provides some important information on what led up to the breach. Somnia also posted a website notice entitled “Notice of Data Security Incident” that provides additional details.
According to these sources, on November 21, 2024, Somnia detected unusual activity within its email system. In response, Somnia secured all email accounts and then brought on a team of cybersecurity specialists to assist with the company’s investigation.
On December 10, 2024, Somnia determined, through its investigation, that some of the affected email accounts contained confidential information belonging to certain individuals.
After learning that sensitive consumer data was accessible to an unauthorized party, Somnia reviewed the compromised files to determine what information was leaked and which consumers were impacted. Somnia is still in the process of reviewing all the compromised information and determining who it belongs to; however, the company notes that the breached information may include your name, Social Security number, address, date of birth, health information, and health insurance information.
On February 14, 2025, Somnia sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About Somnia, Inc.
Somnia is a healthcare management company specializing in anesthesia services for hospitals, ambulatory surgery centers, and office-based practices. Headquartered in Harrison, New York, the company provides comprehensive anesthesia management solutions, including staffing, compliance support, and quality assurance programs. Somnia serves healthcare providers in nine states, including California, Washington, Michigan, Mississippi, Tennessee, Pennsylvania, Maryland, New York and Connecticut. The organization employs approximately 263 people and generates an estimated $28 million in annual revenue.
