Atlantis Data Breach Exposes 6,459 Individuals' PHI & PII

On September 19, 2024, Atlantis Operating LLC, doing business as The Phoenix Rehabilitation and Nursing Center, discovered a data security incident involving a third-party vendor. This breach potentially affected the personal information of 6,459 current and former patients. The incident itself occurred around July 20, 2024, when unauthorized access to sensitive data was identified.

The compromised information varied per individual but may have included names, addresses, medical information, and ocial Security numbers.

The breach highlights the growing challenge of data security in the healthcare sector, where even organizations with sophisticated IT infrastructures can be vulnerable to such incidents.

The Phoenix Rehabilitation and Nursing Center's Response

In response to the breach, The Phoenix Rehabilitation and Nursing Center promptly launched an investigation and engaged experts to assess the scope of the incident. By January 28, 2025, the company had mailed formal notification letters to potentially affected individuals. These letters provided details about the breach, the specific information that may have been impacted, and guidance on monitoring personal accounts for suspicious activity.

To support those affected, The Phoenix Rehabilitation and Nursing Center has set up a toll-free number (833-799-4370) for individuals to learn more about the incident. Representatives are available from 8:00 a.m. to 8:00 p.m. Eastern Time, Monday through Friday, excluding holidays. Additionally, the company encourages everyone to remain vigilant, regularly monitor their accounts, and report any suspicious activity immediately.

For more information about the company, you can visit The Phoenix Rehabilitation and Nursing Center's website. Additionally, details about the breach can be found on the U.S. Department of Health and Human Services' breach portal.