On November 22, 2024, The Physical Medicine & Rehabilitation Center, P.A. (“PMRC”) filed a notice of data breach with the Attorney General of Massachusetts after discovering that information stored on its computer network was subject to unauthorized access. In this notice, PMRC explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, Social Security numbers, addresses, phone numbers, dates of birth, driver’s license numbers, state ID numbers, credit/debit card numbers, medical information, Medicare/Medicaid numbers, and health insurance information. Upon completing its investigation, PMRC began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from The Physical Medicine & Rehabilitation Center, P.A., it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Physical Medicine & Rehabilitation Center data breach. For more information, please see our recent piece on the topic here.
What Caused the Physical Medicine & Rehabilitation Center Data Breach?
The PMRC data breach was only recently announced, and more information is expected in the near future. However, PMRC’s filing with the Attorney General of Massachusetts provides some important information on what led up to the breach. PMRC also posted a website notice discussing what happened and the company’s response.
According to these sources, on July 8, 2024, PMRC detected unusual activity within its computer network. In response, PMRC began working with external cybersecurity experts to investigate the incident. Through this investigation, PMRC learned that an unauthorized party had access to its network between July 8, 2024 and July 9, 2024, including certain files containing confidential patient information.
After learning that sensitive consumer data was accessible to an unauthorized party, the Physical Medicine & Rehabilitation Center reviewed the compromised files to determine what information was leaked and which consumers were impacted. PMRC recently completed this review process, and while the breached information varies depending on the individual, it may include your name, Social Security number, address, phone number, date of birth, driver’s license number, state ID number, credit/debit card number, medical information, Medicare/Medicaid number, and health insurance information.
On November 22, 2024, the Physical Medicine & Rehabilitation Center sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About the Physical Medicine & Rehabilitation Center, P.A.
The Physical Medicine & Rehabilitation Center, P.A. is a healthcare services provider based out of Englewood, New Jersey. PMRC provides sports medicine, physical therapy, and occupational therapy services to patients in New York and New Jersey. PMRC operates three locations in New Jersey (Englewood, Fort Lee, and West New York) and two locations in New York (Bardonia and Riverdale). Physical Medicine & Rehabilitation Center employs more than 81 people and generates approximately $5 million in annual revenue.