On December 29, 2023, Navvis & Company, LLC, a business services company headquartered in St. Louis, Missouri, filed a notice of a data breach with the Attorney General of Oregon. The breach exposed confidential consumer information, impacting patients of various healthcare providers nationwide.
This alarming incident raises concerns about the security of sensitive personal data, including names, Social Security numbers, dates of birth, Medicaid or Medicare ID numbers, health plan information, medical treatment information, medical record numbers, patient account numbers, case identification numbers, provider and doctor information, and health record information.
Navvis & Company’s announcement reveals that an unauthorized party successfully accessed the company’s computer system between July 12, 2023, and July 25, 2023.
The breach was detected on July 25, 2023, prompting Navvis to launch an investigation with external cybersecurity experts. The compromised files contained personal and protected health information belonging to patients of Navvis’ healthcare provider customers.
Patients affected by this data security incident received breach notification letters on December 29, 2023. These letters detailed the specific information that was exposed to each individual.
The compromised data varies depending on the person but may include sensitive details such as Social Security numbers, medical treatment information, and more.
Navvis & Company, LLC, primarily collaborates with health plans, health systems, and physician groups to revolutionize the healthcare delivery model. The company employs over 267 people and generates an annual revenue of approximately $55 million.
Console & Associates, P.C., a law firm, is actively investigating claims on behalf of individuals affected by the Navvis & Company breach.
The compromised data includes patients’ full names, Social Security numbers, and medical information. Victims of the breach face an increased risk of identity theft and other fraudulent activities.
Console & Associates, P.C. advises affected individuals to take steps to protect themselves and consider consulting a data breach attorney for potential legal recourse.
SSM Health, an Oklahoma City-based healthcare provider, also noted potential impacts on its orthopedic patients due to the Navvis data breach. Navvis serves as a business partner providing health management services to SSM Health.
The breach, occurring between July 12 and July 25, 2023, may have compromised various sensitive information, including Social Security numbers.
Patients affected by this incident have been offered free credit monitoring and identity protection services. SSM Health has prioritized notifying impacted individuals and is taking steps to mitigate potential risks associated with the data breach.
The Navvis & Company data breach has significant implications for the affected individuals, as their personal and health information is now at risk.
Prompt action, such as engaging data breach lawyers and monitoring for potential identity theft, is crucial for those impacted.
Healthcare providers, like SSM Health, are also actively addressing the situation to support affected patients and ensure their protection in the aftermath of this security incident.
