LifeLong Medical Care Data Breach – Class Action Investigation
Ahdoot Wolfson is investigating a potential class action against LifeLong Medical Care (“LifeLong”) relating to reports that a breach of one of LifeLong’s vendors may have exposed sensitive LifeLong patient information.
According to reports, approximately 115,448 patients of LifeLong are being notified that their data was accessed and stolen during a series of ransomware-related intrusions at one of its third-party vendors, Netgain. The Netgain incident occurred in September 2020 and providers were notified in February, more than six months ago. At the time, Netgain reported that threat actors leveraged stolen credentials in September 2020 to access their system, which enabled the actor to proliferate to client environments connected to the vendor’s system–such as LifeLong–and allowed the exfiltration of a massive amount of patient data.
It has been reported that the breach at LifeLong may have exposed the names, Social Security numbers, patient ID numbers, and treatment information for impacted breach victims. LifeLong’s failure to vet its third-party vendors to ensure proper data privacy, and LifeLong’s own data privacy shortcomings, resulting in the breach, may violate consumer protection and other laws.
If you received a notice from LifeLong Medical Care indicating that your data was compromised during the data breach, please fill out the form below and one of our lawyers will promptly contact you.