Sutter Health Data Breach Lawsuit

Legal Representation for Victims of Data Breaches in California

The Data Breach Attorneys at Potter Handy Law Firm have the knowledge and resources to thoroughly examine your case, conduct an investigation into the breach, and, when needed, fight for justice.

Potter Handy LLP is currently reviewing cases on behalf of individuals affected by the Sutter Health data breach. These individuals may have had their personal and confidential information illegally accessed by an unknown third party during the Sutter Health data breach. Potter Handy LLP will conduct a complimentary assessment of your data breach claim in order to safeguard the rights and privacy of all those impacted by the Sutter Health data breach.

We are only interested in claims that arose in California.


What Happened?

Sutter Health disclosed a data breach following their exposure to a recent cybersecurity attack. On September 22, 2023, Virgin Pulse informed Sutter Health about being impacted by a vulnerability in the MOVEit file-transfer application developed by Progress Software. Progress Software verified that the zero-day vulnerability allowed hackers to breach the MOVEit servers of various companies. Virgin Pulse promptly applied all available patches and implemented recommended measures to mitigate any unauthorized access. The company initiated an investigation and confirmed that an unauthorized party had gained access to its MOVEit server between May 30, 2023, and May 31, 2023.

On November 3, 2023, Sutter Health issued a notice on its website informing the public about a data breach at Welltok, Inc., a Virgin Pulse company. The breach, involving a third party, led to unauthorized access to patient data and personal information. Both Sutter and Virgin Pulse have initiated the process of sending out notifications to individuals whose personal information may have been compromised.

Welltok, the operator of an online contact-management platform used by healthcare clients to communicate with patients for Sutter, determined that their MOVEit Transfer was compromised in the same attack affecting numerous organizations and millions of individuals.

If you receive a data breach notification from Sutter or Virgin Pulse, it is crucial to comprehend the potential risks associated with criminals gaining access to your personal and health information. Even a small amount of data can be exploited for various fraudulent activities and identity theft schemes.

View an example of what the letter looks like.

If you received notification that a data breach had exposed your personal information, you should contact our highly qualified Data Breach Lawyers. These attorneys can effectively protect your legal rights and ensure that those responsible for causing the harm are held accountable.

By selecting a qualified Data Breach Lawyer in California, you can be assured that your interests are protected thoroughly during the entire case, providing you with peace of mind.

Contact us online or call our data breach intake professionals at (415) 534-1911.


What Information Was Involved in the Sutter Health Data Breach?

The investigation has concluded that the incident may have led to unauthorized access to certain confidential information. Although the specific data compromised in the Sutter Health breach will vary for each individual, the company is cautioning that names and protected health information may be vulnerable, at the very least.

The types of personal information contained in the impacted files include:

  • Name
  • Date of birth
  • Health insurance information
  • Provider name
  • Treatment cost information
  • Treatment information or diagnosis.

All of the specific files that may have been accessed or removed could not be determined.


Protecting Consumers’ Privacy Rights Following the Sutter Health Data Breach

If you were notified that your information had been stolen as a result of the Sutter Health data breach, you may be entitled to compensation or other remedies.

Please call (415) 534-1911 for an appointment with Mark Potter and Jim Treglio of Potter Handy LLP in San Francisco. During this call, our intake professionals will review your claim regarding the Sutter Health data breach. Free Consultations 24/7. No out-of-pocket expenses.

View an example of what the letter looks like.