Skip to main content
photo of a Doctor

Concentra Data Breach Investigation | Perry Johnson & Associates

Written by Joseph Lyon on . Posted in Data Breach.

The Lyon Firm is filing Concentra Health data breach claims on behalf of individuals in Texas and nationwide. Our legal team is currently involved with numerous plaintiffs regarding the data security incident at the medical transcription firm Perry Johnson & Associates (PJ&A), and files class action data breach lawsuits in all fifty states.

Contact our lawyers to discuss your next steps and to consider taking legal action against Concentra, PJ&A or another entity that may have compromised your sensitive personal information. We believe any organization that collects and stores your data has a duty to protect it with reasonably secure networks. Should a cyberattack lead to a data theft incident, any negligent party can be held accountable.

What Happened at Concentra?

In January 2024, Concentra Health Services began sending out data breach notification letters, indicating that one of their vendors, PJ&A, contacted them in November 2023 regarding a data breach event. The U.S. Department of Health and Human Services Office for Civil Rights (HHS) site indicates that almost 4 million individuals could be impacted in the “hacking/IT incident.”

According to the notice, an unauthorized party gained access to the PJ&A network between late March and May 2023. During that time frame, the hackers acquired copies of certain files from PJ&A systems.

The impacted data may include Concentra patient information, including: name, date of birth, address, medical record number, hospital account number, admission diagnosis, and date and time of service, Social Security numbers, insurance information and clinical information from medical transcription files, such as laboratory and diagnostic testing results, medications, the name of the treatment facility, and the name of healthcare providers.

The number of healthcare-related data breaches has reached epic proportions, and tens of millions of Americans are impacted each year. Medical identity theft and fraud may result from data theft and victims are urged to remain vigilant following any data security notice.

The security issues are so problematic that the HHS recently released a set of cybersecurity performance goals tailored to the healthcare industry to prevent cyberattacks and improve response times. The health sector is seeing a massive rise in ransomware attacks. According to reports, health systems experienced 46 ransomware attacks in 2023, with data being stolen in 32 of 46 of the ransomware events.

The Lyon Firm has years of experience in the cybersecurity litigation field, and we have filed data privacy class action complaints on behalf of plaintiffs nationwide. Contact our attorneys to learn more about the Concentra and Perry Johnson breach, and to consider joining the existing class action lawsuit.