Aurora Behavioral Health Care Data Breach Exposes Social Security Numbers

The January 2024 Data Breach

On January 28, 2024, Aurora Behavioral Health Care, operated by Signature Healthcare Services LLC, discovered a significant disruption to its IT systems. Prompt action was taken to secure the systems, and an investigation was initiated with the help of third-party forensic experts. Law enforcement was notified immediately. It was found that an unauthorized party had gained access to certain systems between January 27 and January 28, 2024, during which they accessed or acquired files containing sensitive information.

Information Exposed

The following types of consumer information were exposed in the breach:

• Name
• Date of birth
• Social Security number
• Medical record number
• Services received
• Dates of services
• Treating physician

Signature Healthcare Services LLC's Response

In response to the breach, Signature Healthcare Services LLC took immediate steps to enhance security and prevent future incidents. These measures included implementing additional safeguards and technical security measures to protect and monitor their systems. The organization has also begun notifying affected individuals and is offering them a one-year complimentary membership to Experian® IdentityWorksSM Credit 3B to help detect misuse of their information and provide identity protection support.

Steps to Take if You Are Affected

If you have been notified that your information was compromised in this breach, it is crucial to take the following steps to protect your identity:

1. Enroll in the offered Experian IdentityWorks Credit 3B service. Visit the Experian IdentityWorks website to enroll and use the provided activation code.
2. Monitor your credit reports and accounts. Check for any unauthorized activity or inaccuracies. You can obtain a free credit report from each of the three major credit reporting agencies once every 12 months at AnnualCreditReport.com.
3. Consider placing a fraud alert or a security freeze on your credit reports. This makes it harder for identity thieves to open accounts in your name. Contact each of the three major credit bureaus to place these alerts.
4. Stay vigilant. Regularly review your financial statements and health insurance statements for any services you did not receive.

About Signature Healthcare Services LLC

Signature Healthcare Services LLC is one of the largest privately-held behavioral health hospital companies in the U.S. Based in Southern California, the company operates 19 acute care hospitals under the Aurora Behavioral Health Care brand and others, providing mental health and substance abuse treatment. All facilities are accredited by CMS and the Joint Commission, emphasizing quality patient care and security.

For more information on the breach and what steps to take, you can read the detailed Notice to Consumers provided by Signature Healthcare Services LLC.