American Addiction Centers Data Breach Investigation
Shub & Johns LLC is currently investigating American Addiction Centers, Inc. (“AAC”) for an apparent failure to safeguard sensitive consumer information in a data breach that was detected on or around September 26, 2024. American Addiction Centers, a rehabilitation organization based in Tennessee with facilities across the country, discovered that an unauthorized actor gained access to client data within AAC’s systems. Through further investigation, it was determined that the breach took place between September 23 and September 26, 2024.
Though the data security breach was discovered in September, the Company had not notified consumers until late December after delivering letter notices to impacted consumers. AAC has indicated that approximately 410K individuals have been impacted by the breach, including former and current patients. Consumer information exposed in the breach may vary but can include: name, addresses, phone numbers, dates of birth, medical record numbers and other identifiers, as well as social security and health insurance information. AAC indicates that payment information may not have been included.
The cybercriminals responsible for the breach may have already obtained and sold the compromised consumer information. In previous data breaches, victims of data theft have noticed identity theft attempts ranging from fraudulent charges on bank accounts or credit cards, medical and/or government services ordered in their name, or their information being posted on the dark web.
Affected by the American Addiction Centers Data Breach
Have you recently received a data breach notification from American Addiction Centers? If so, we would like to hear from you. Please complete the contact form on this page or contact us at 610-477-8380 or info@shublawyers.com.