TriHealth Confirms Third-Party Data Breach
April 02, 2021
Cincinnati, OH (April 2, 2021) – On February 5, 2021, Bricker & Eckler LLP (“Bricker”), a law firm located in Columbus, OH, notified TriHealth that TriHealth data was included in a criminal ransomware attack on Bricker’s email server (visit Bricker’s website for more detailed information). This data breach resulted in the theft of personally identifiable and protected health information belonging to a select group of TriHealth employees and patients. Bricker provides legal services that support TriHealth’s business operations, which requires TriHealth to provide sensitive and confidential information to Bricker, including employee and patient information.
At this time, there is no evidence that the information has been misused as a result of this incident. TriHealth takes the privacy of its employees and patients seriously and expects every third party with whom we engage to follow similar security protocols.
Bricker will be notifying impacted individuals directly via U.S. mail and is offering 12 months of identity theft and credit monitoring protection free of charge to those impacted. They also implemented additional security protocols designed to enhance the security of their network, internal systems and applications. Bricker will also continue to evaluate additional steps that may be taken to further increase their defenses going forward and they are supporting a federal law enforcement investigation.
If any member of the public has questions or believes they may have been impacted by this breach, please contact Bricker at (833) 796-8641 Monday through Friday 9 am to 11 pm or on the weekends between 11 am and 8 pm Eastern Standard Time. All media inquiries should also be directed to this number.