On November 22, 2023, East River Medical Imaging filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after determining that suspicious activity on its IT network was related to a cyberattack. In this notice, ERMI explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, Social Security numbers, contact information, insurance information, and medical information. Upon completing its investigation, ERMI began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you receive a data breach notification from East River Medical Imaging, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the East River Medical Imaging data breach. For more information, please see our recent piece on the topic here.

What Caused the East River Medical Imaging Data Breach?

The East River Medical Imaging data breach was only recently announced, and more information is expected soon. However, ERMI’s filing with the U.S. Department of Health and Human Services Office for Civil Rights provides some important information on what led up to the breach. ERMI also posted a website notice entitled “Notice of Data Security Incident ” that provides additional details.

According to these sources, on September 20, 2023, ERMI detected suspicious activity within its computer network. In response, ERMI secured its systems, notified law enforcement, and then began working with a third-party cybersecurity firm to investigate the incident and whether any patient data was leaked as a result.

The ERMI investigation confirmed that an unauthorized party was able to access its network between August 31, 2023 and September 20, 2023, including certain files containing confidential patient information.

After learning that sensitive consumer data was accessible to an unauthorized party, East River Medical Imaging reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, for patients, it may include your name, Social Security number, contact information, insurance information, and medical information. For employees, the information could have included your name, contact information, financial account information, and driver’s license number.

On November 22, 2023, East River Medical Imaging sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.

More Information About East River Medical Imaging

Founded in 1970, East River Medical Imaging is a diagnostic imaging and radiology practice located in New York City, New York. ERMI provides a range of imaging services to patients, including bone densitometry, CT scans, interventional radiology, MRI scans, and MSK ultrasounds. East River Medical Imaging employs more than 122 people and generates approximately $18 million in annual revenue.