Restorix Health Data Breach Exposes PHI - 38,553 People Affected

On May 30, 2024, Restorix Health, Inc., discovered that an unauthorized actor had accessed an employee's email account. This breach potentially compromised sensitive personal information of individuals associated with their healthcare partners.

The intrusion occurred between May 7 and May 29, 2024, and was identified after a thorough investigation involving external cybersecurity experts.

The investigation preliminarily concluded the breach affected 38,553 individuals in the United States.

The severity of this breach is significant due to the nature of the data exposed, which by definition contains protected health information (PHI), due to the disclosure to HHS.

The breach was reported on the Restorix Health website and to the U.S. Department of Health and Human Services on February 14, 2025, as detailed in the HHS breach portal.

Restorix Health's Response

In response to this incident, Restorix Health took steps to secure their systems and engaged third-party forensic experts to assist in the investigation. The company has implemented additional cybersecurity safeguards, enhanced employee cybersecurity training, and improved their cybersecurity policies, procedures, and protocols to minimize the likelihood of such incidents in the future.

Restorix Health is notifying affected individuals via mail, starting February 14, 2025. Those who do not receive a letter but wish to know if they are affected can call 1-833-799-4480 for more information. The company encourages individuals to remain vigilant against identity theft and fraud by reviewing account statements and monitoring credit reports. They provide guidance on placing fraud alerts and security freezes on credit files to protect against misuse of personal information.

Which Hospitals are Affected?

The following hospitals are considered "Covered Entities" that the data breach notice covers:

• Ascension Providence Rochester Hospital
• Ascension Providence Hospital - Southfield Campus
• Ascension Borgess Allegan Hospital
• Ascension Genesys Hospital
• Ascension St. John Hospital
• Ascension St. Vincent’s Riverside Hospital
• Avera Dells Area Hospital
• Avera Eureka Community
• Avera Flandreau Hospital
• Avera Merrill Pioneer Hospital
• Avera Pipestone Hospital
• Avera St. Benedict Hospital
• Avera St. Luke’s Hospital
• Avera St. Mary’s Hospital
• Coffee Regional Medical Center
• Community Hospital of Staunton
• Cooperman Barnabas Medical Center
• Desert Regional Medical Center
• Einstein Medical Center Montgomery
• Einstein Medical Center Philadelphia
• Emerson Hospital
• FHN Memorial Hospital
• Grady Memorial Hospital
• Henry Ford Rochester
• Holy Spirit Medical Center
• Howard Memorial Hospital
• Jefferson Buck Hospital
• Jefferson Frankford Hospital
• Jersey Community Hospital
• Massac Memorial Hospital
• Melrose Wakefield Hospital
• Monmouth Medical Center
• Monmouth Medical Center Southern Campus
• Montefiore St. Luke’s Cornwall
• Morton Hospital
• New York - Presbyterian Queens
• Novant Health New Hanover Regional Medical Center
• Ochsner Medical Center - Northshore
• Rawlins County Health Center
• Robert Wood Johnson University Hospital
• Saint Joseph’s Medical Center
• St. Barnabas Hospital
• Sentara Leigh Hospital
• Sentara Martha Jefferson Hospital
• Sentara Obici Hospital
• SSM Health Cordell Memorial Hospital
• SSM Health St. Joseph Hospital
• St James Parish Hospital
• Ascension St Agnes Hospital
• Stewart Memorial Community Hospital
• The Brooklyn Hospital Center
• Touro Infirmary
• Trinity Health Hospital
• UCHealth Memorial Hospital Central
• UP Health System - Marquette
• Virtua Willingboro Hospital
• Camden Clark Medical Center
• Wilkes-Barre General Hospital