CCM Health Data Breach Investigation

At Console & Associates, our data breach lawyers are closely examining the recent CCM Health data breach. This data breach potentially exposed sensitive personal information of as many as 85,258 individuals.

Data Breach Incident Details

A recent report from the Attorney General of Maine states that the CCM Health data breach occurred due to a cyber security attack after the company learned that an unauthorized party had gained access to its network. CCM Health secured their network and launched an investigation where they engaged third-party cybersecurity professionals. On February 12, 2024, it was confirmed that an unauthorized party had indeed accessed its network between April 3, 2024 and April 10, 2023 and gained access to files containing confidential patient information.¹ Data breach letters were sent out by CCM Health on June 6, 2024 informing affected individuals about the nature of the incident and compromised data.

Key Details

Dates of Unauthorized Access: April 3, 2024 to April 10, 2023
Date of Notification: June 6, 2024
Number of Affected Individuals: 85,258
Type of Incident: Unauthorized network access

Compromised Personal Information

Based on available information, the CCM Health data breach may have exposed the following sensitive information:

• Full names
• Dates of birth
• Social Security numbers
• Medical information
• Health insurance information

In their data breach letter, the company noted that if an individuals medical information was involved, it may include:

• Medical record number
• Patient account number
• Prescription information
• Healthcare provider's name
• Medical diagnosis,
• Diagnosis code
• Treatment type
• Treatment location
• Treatment date
• Admission date
• Discharge date
• Lab results¹
  

About CCM Health

Based out of Montevideo, Minnesota, CCM Health is a healthcare provider that provides health services through public hospitals and healthcare facilities. The company offers a wide range of services through a network of three clinics located in Milan, Clara City, and Montevideo. CCM Health’s services include primary care, pediatric care, behavioral health, hospice care, cardiology, imaging and more.

Understanding Your RIGHTS AS A CCM Health Data Breach Victim

How do you know that you were affected by the CCM Health data breach? Usually victims receive a NOTICE OF DATA BREACH in the mail, but the impact of a breach can be felt long before notices are sent to those affected. This can be in the form of fraudulent financial activity and other forms of identity theft.

Protecting Yourself After a HEALTHCARE Data Breach

1. Monitor all accounts and credit reports closely
2. Consider placing a fraud alert or credit freeze
3. Be vigilant against phishing attempts using information from the CCM Health data breach
4. Change passwords for affected accounts
5. Enable two-factor authentication where possible
   

Explore our “Guide for Victims of a Data Breach” to better understand protective measures you can take to better protect yourself against identity theft and learn how to secure your information effectively after a data breach.

If you believe you were affected, we encourage you to reach out to our data breach attorneys for a no-cost consultation about your situation, your eligibility to file a data breach class action lawsuit and any compensation that may be available to you. Complete our confidential contact form below and a member of our legal team will be in touch.

External Resources:

1. Data Breach Letter - https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/b48921ca-7e05-43db-89fe-e87e80039f55.html