Arietis Health, LLC Announces MOVEit Data Breach Impacting Patients of NorthStar Anesthesia Facilities | JD Supra

On October 2, 2023, Arietis Health, LLC filed a notice of data breach with the Attorney General of Texas after discovering that a hacker exploited a vulnerability in the file-transfer application MOVEit, which was used by Arietis Health. In this notice, Arietis Health explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, dates of birth, driver’s license numbers, state identification card numbers, addresses, Social Security numbers and protected health information. Upon completing its investigation, Arietis Health began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from Arietis Health, LLC, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Arietis Health MOVEit data breach. For more information, please see our recent piece on the topic here.

What Caused the Data Breach Affecting Arietis Health?

The Arietis Health MOVEit data breach was only recently announced, and more information is expected in the near future. However, Arietis Health’s filing with the Attorney General of Texas provides some important information on what led up to the breach. According to this source, Arietis Health provides healthcare billing services to NorthStar Anesthesia, which owns various pain management and anesthesia practices. Arietis Health also uses MOVEit, a popular file-transfer program, in the normal course of business.

On May 31, 2023, Arietis Health was informed by Progress Software, the creator of MOVEit, of a vulnerability within MOVEit. In response, Arietis Health secured and patched its MOVEit server and then began working with cybersecurity experts to investigate the incident.

On July 26, 2023, Arietis Health confirmed that unauthorized actors were able to access its MOVEit server on May 31, 2023, at which point the hackers may have acquired certain files containing confidential information belonging to patients at NorthStar Anesthesia.

After learning that sensitive consumer data was accessible to an unauthorized party, Arietis Health reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, date of birth, driver’s license number, state identification card number, address, Social Security number and protected health information.

On October 2, 2023, Arietis Health sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information of theirs was compromised.

More Information About Arietis Health, LLC

Founded in 2020, Arietis Health, LLC is a revenue cycle management company based in Fort Myers, Florida. Arietis Health also provides solutions related to AR management, coding, billing, payment posting, and insurance payer enrollment. Arietis Health employs more than 159 people and generates approximately $45 million in annual revenue.