The Lyon Firm is investigating Monongalia Health System data breach claims on behalf of victims and plaintiffs in West Virginia and nationwide. The firm is currently involved in several class action security breach cases, seeking compensation and legal justice.
Some HIPAA data breaches occur when bad actors attempt to re-route wire payments. Monongalia Health System in West Virginia may have have suffered that kind of personal data breach when their email system, along with its affiliated hospitals (Monongalia County General Hospital Company and Stonewall Jackson Memorial Hospital Company) were impacted.
The compromise of employee email accounts via a phishing attack was discovered in July 2021 after a hospital vendor reported trouble receiving payment.
According to reports, employee and patient information was attached to compromised accounts, potentially impacting patients and members of Mon Health’s employee health plan. The following types of their information may have been accessed:
- Names
- Medicare Health Insurance Claim Numbers
- Social Security numbers
- Addresses
- Dates of birth
- Patient account numbers
- Health insurance plan member ID numbers
- Medical record numbers
- Dates of service
- Provider names
- Claims information
- Medical and clinical treatment information
- Status as a Mon Health patient
Monongalia Health System, Monongalia County General Hospital Company and Stonewall Jackson Memorial Hospital Company announced an email phishing incident and has begun sending out data breach notification letters to patients, providers, employees and contractors.
On October 29, 2021, Mon Health concluded their email phishing incident data breach investigation and determined that hackers had gained access to a Mon Health contractor’s email account and sent email in an attempt to obtain funds through fraudulent wire transfers. The investigation determined that unauthorized individuals gained access to several Mon Health email accounts between May and August 2021.
Monongalia Health cannot rule out the possibility that information in the emails and attachments were leaked. Those individuals who receive notice letters are advised to take quick action and contact a data privacy attorney to review.
The Lyon Firm is investigating data breach incidents and is actively involved in numerous data privacy cases and has experience filing data security claims on behalf of plaintiffs nationwide.