Ortho RI Data Breach Exposes Sensitive Patient Information

Orthopedics Rhode Island, Inc. (Ortho RI) recently experienced a significant data breach that may have exposed sensitive personal and medical information of its patients. The breach occurred between September 4, 2024, and September 8, 2024, when an unauthorized actor gained access to and acquired certain files from Ortho RI’s network.

The breach was identified on September 7, 2024, during routine monitoring, prompting the organization to secure its systems and launch an investigation.

The investigation revealed that the compromised files contained a variety of sensitive information. While the specific details may vary for each individual, the types of information exposed include:

• Name
• Address
• Date of birth
• Billing and claims information
• Health insurance claims information
• Medical information, including diagnosis, medications, test results, x-ray images, and treatment details

The breach has the potential to affect a large number of individuals, though the exact number of impacted patients has not been disclosed.

As of December 10, 2024, Ortho RI has proactively notified all potentially affected individuals and reported the incident to law enforcement and relevant authorities, including the California Attorney General.

Orthopedics Rhode Island's response

In response to the breach, Ortho RI took steps to secure its systems and mitigate further risk. The organization launched a thorough investigation with the help of cybersecurity experts to determine the nature and scope of the incident.

Additionally, Ortho RI has reported the breach to federal law enforcement and is cooperating with their ongoing investigation.

To prevent similar incidents in the future, Ortho RI is reviewing and enhancing its existing data security policies and procedures. This includes implementing additional safeguards to better protect sensitive information.

Affected by the data breach?

If you have received a notification from Orthopedics Rhode Island, Inc. regarding this data breach, it is important to take steps to protect yourself and monitor your personal information. Here are some recommended actions:

1. Monitor your accounts: Regularly review your financial and medical account statements for any unauthorized transactions or suspicious activity.
2. Check your credit reports: You are entitled to one free credit report annually from each of the three major credit reporting bureaus (Equifax, Experian, and TransUnion). Visit Annual Credit Report to request your reports.
3. Place a fraud alert: Consider placing a fraud alert on your credit file. This will require businesses to verify your identity before extending credit in your name. Contact any of the three major credit bureaus to initiate this process.
4. Consider a credit freeze: A credit freeze restricts access to your credit report, making it harder for identity thieves to open accounts in your name. You can request a freeze by contacting Equifax, Experian, or TransUnion.
1. Equifax Credit Freeze
2. Experian Credit Freeze
3. TransUnion Credit Freeze

1. Stay vigilant: Be cautious of phishing emails or phone calls requesting sensitive information. Scammers may try to exploit the situation by impersonating legitimate entities.
2. Utilize available resources: If you have questions or need assistance, call the dedicated assistance line provided by Ortho RI at 888-458-5613, available Monday through Friday, 9:00 a.m. to 9:00 p.m. Eastern Time.

For additional guidance on protecting your identity, visit the Federal Trade Commission’s Identity Theft Resource.