An Adaptive Health Integrations lately reported a data breach to the Department of Health and Human Services’ Office for Civil Rights (OCR) that affected 510,574 individuals’ protected health information (PHI).
Adaptive Health Integrations based in Williston, North Dakota provides LIS software services and billing/revenue services to labs, doctor offices, as well as other healthcare organizations. A copy of the notification letters posted on the Montana Attorney General webpage says that Adaptive Health Integrations recently discovered that an unauthorized person had acquired access to its system on or about October 17, 2021, and potentially accessed some information kept on its network.
The letters mentioned that upon discovery of the unauthorized access, the company immediately controlled the threat, and launched an investigation. A detailed àudit of breached files was performed, and that process ended on February 23, 2022. As per the notification letters, free credit monitoring, fraud assessment, and identity theft restoration services are being provided via Kroll for one year.
The notification letters did not give any details regarding who Adaptive Health Integrations is or the reason why it retains the PHI of individuals. Some people who got a notification letter have published on the internet asking about the genuineness of the breach notification letters, which were penned on paper and having a copied image of the company logo. After looking at the company web page some have commented that maybe this is a fraud.
If searching the company on Google, the search engine results page leads to a two-page site of the company with a placeholder for the contact page including a dummy message. It was not mentioned on the company webpage that there was a data breach during the time of sending notifications.
The law company Migliaccio & Rathod LLP states it is investigating the data breach at Adaptive Health Integrations.