Monte Nido Data Breach: Sensitive Info Accessed 9/16-9/22

On September 22, 2023, Monte Nido, a company specializing in eating disorder treatment, experienced a significant data breach. Unauthorized access to their network was detected, which lasted from September 16, 2023, to September 22, 2023. This breach exposed a wide range of sensitive consumer information.

Information Exposed

The types of consumer information exposed in the breach include:

• Address
• Phone number
• Email address
• Date of birth
• Driver's license number
• Government identification number
• Individual taxpayer identification number
• Birth certificate
• Email address and password
• Digital signature
• Passport number
• Social Security number
• Financial account information (including account number, routing number, or password)
• Credit and/or debit card number with password or security code
• Worker’s compensation claim information
• Medical record number
• Patient account number
• Medical information
• Prescription information
• Dates of service
• Medical history, condition, treatment, or diagnosis
• Certificate and/or license number
• Health insurance information

The breach was disclosed to the Attorney General's office in the state of California and Massachusetts.

Monte Nido's Response

Upon identifying the unusual activity, Monte Nido immediately took steps to secure their systems. They launched an investigation in consultation with outside cybersecurity experts. Their extensive investigation concluded that unauthorized access to their systems occurred between September 16 and September 22, 2023. In response, Monte Nido has taken measures to increase security across all of their networks.

Actions for Affected Individuals

If you are affected by this data breach, it is crucial to take the following steps to protect your personal information:

1. Enroll in Credit Monitoring: Monte Nido is offering a complimentary one-year membership of Experian IdentityWorksSM Credit 3B. This service includes credit monitoring, identity restoration, and $1 million identity theft insurance. You can find more information and instructions on how to activate your membership in the notice provided by Monte Nido.
2. Monitor Your Accounts: Remain vigilant by monitoring your account activity and credit reports. You can set up free fraud alerts from nationwide credit bureaus (Equifax, Experian, and TransUnion). You can also request and review your free credit report any time via annualcreditreport.com or call, toll-free, 1-877-322-8228.
3. Place a Fraud Alert: Consider placing a fraud alert on your credit files. A fraud alert tells creditors to contact you personally before they open any new accounts. You can place a fraud alert by contacting any of the three major credit bureaus:
1. Equifax: Equifax Fraud Alerts
2. Experian: Experian Fraud Center
3. TransUnion: TransUnion Fraud Alerts

1. Place a Security Freeze: If you are very concerned about becoming a victim of fraud or identity theft, you may request a security freeze on your credit file. This prohibits consumer reporting agencies from releasing your credit report without your authorization. You can place a security freeze by contacting the credit bureaus.
2. Review Your Medical Information: If your medical information was impacted, review your "explanation of benefits statement" from your health insurance company and follow up with your insurance company or care provider for any items you do not recognize. You can also ask your insurance company for a current year-to-date report of all services paid for you as a beneficiary.

For more detailed information, refer to the notice provided by Monte Nido in the California Attorney General's website and the Massachusetts Attorney General's website.