Caravus data breach linked to Netgain breach

The CaseyGerry law firm is currently investigating the Caravus data breach. Caravus, a healthcare coverage provider for individuals and businesses, is the latest company to report a data breach tied to the Netgain Technology LLC data breach which occurred in late 2020 and affected numerous companies in the health industry.

According to the article, Data of 3.3M 20/20 Hearing Care Patients Hacked From Cloud Database on healthitsecurity.com, Netgain had initially informed Caravus that they were not impacted by the Netgain breach, however, Caravus discovered that this was not the case.

In the Notice of Data Security Incident posted on the Caravus website, the company states that they further investigated the breach and found that Netgain did not destroy some of the company’s old data during a data migration in 2015, exposing the sensitive data of individuals associated with Caravus 2016 or earlier.

The compromised information includes:

• Names
• Addresses
• Driver’s license numbers
• Social Security numbers
• Health information
• Financial account information

In late 2020, Netgain Technology LLC, an IT service provider servicing numerous healthcare and health insurance providers across the country, experienced a ransomware attack that affected many of the service provider’s clients including the below:
• Woodcreek Provider Services
• Allina Health’s Apple Valley Clinic
• Health Center Partners of Southern California
• San Ysidro Health
• SAC Health Systems
• San Diego Family Care
• Elara Caring
• Sandhills Medical Foundation

CaseyGerry is currently representing those affected by the Netgain data breach. If you were a member of Caravus and have received notice of the breach, please contact our attorneys at (619) 238-1811 to discuss your case.