Gaia Software reports data breach exposing personal and health data
Learn More
Gaia Software, a provider of electronic medical record and billing management software services to Americare Renal Center, is reporting a cyberattack and data breach.
The attack occurred in February 2024, compromising the protected health information (PHI) of 56,676 individuals. Gaia Software detected the attack around February 5th, 2024, and notified the HHS’ Office for Civil Rights on April 5, 2024. An investigation concluded on April 19, 2024. A threat actor attempted to infiltrate Gaia's computer network and demanded a ransom payment, though it is not confirmed if ransomware was involved.
The following types of patient information were potentially stolen:
- Names
- Addresses
- Dates of birth
- Social Security numbers
- Health insurance information
- Health information
No other details are disclosed about the nature of the attack.
Gaia Software claims it has not detected any misuse of the compromised data. Breach notification were letters sent on June 28, 2024. Affected individuals have been offered complimentary single bureau credit monitoring, credit reports, and credit score services as a precaution against identity theft and fraud.
