DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

ClearBalance notifying more than 209,000 patients who have medical expense loans

Posted on July 13, 2021 by Dissent

Many readers may never have heard of CSI Financial Services, LLC but as ClearBalance, the California firm services loans made by hospitals and providers to patients who need to finance medical expenses.

A recent filing with the Maine Attorney General’s Office reveals that beginning on March 8, there was unauthorized access to some employee email accounts. The access was not detected until April 26, when ClearBalance detected and thwarted an attempted wire transfer of funds. Subsequent investigation revealed that the email accounts compromised also contained personal information related to certain loan accounts.

While the type of information varied by individual, the types of information in the compromised email accounts included  patients’ name, tax ID, social security number, date of birth, other government-issued ID, telephone number, healthcare account number and balance, date of service, ClearBalance loan number and balance, personal banking information (such as the financial institution name, account number and routing number, but not  PIN or access code), clinical information, health insurance information, and full-face photographic image.

Although ClearBalance reports that they have no evidence of misuse of that personal information, they recently started notifying 209,719 individuals.  Those being notified are being offered mitigation services including 24 months of credit and CyberScan monitoring, a $1 million insurance reimbursement policy, and identity theft recovery services.  The dark web is also being monitored for any signs of any of the data showing up.

 

Related posts:

  • ClearBalance, Bricker & Eckler settle data breach lawsuits involving patient data
Category: Breach IncidentsFinancial SectorHealth DataPhishing

Post navigation

← ME: York Animal Hospital hit by ransomware, lost all patient records for past four years.
Parts of Kazakhstan e-gov portal infected with Razy malware →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.