On or around March 1, 2023 Cerebral Inc. (“Cerebral”) announced that a cybersecurity breach left its servers susceptible to attack. Around January 3, 2023, the company learned that a ransomware incident exposed sensitive and private information. An unknown actor was able to access the company’s health organization information, potentially leaving patient data vulnerable and 3,100,000 individuals at risk.

Cerebral Inc. is a mental health telemedicine company located in Walnut, California. In early January 2023, Cerebral learned of a ransomware incident targeting its servers, but has not elaborated on this discovery. Cerebral immediately engaged in an investigation, uncovering that an unauthorized actor had gain access to its systems on or around January 3, 2023., but Cerebral did not start notifying patients until March 1, 2023. Patients remained unaware for significant period of time before hearing news of the data breach. This could have potentially left many individuals affected by fraud unaware of a likely reason.

Patient information such as names, addresses, dates of birth, medical information and/or health insurance information and potentially much more has been exposed.

If you received a letter from Cerebral Telehealth indicating that your information was involved in a data breach, fill out the form below to participate in Shub Law’s investigation.

Data Breach + Arb Waiver question