25% off all training courses Offer ends May 29, 2026
View HIPAA Courses
Learner Login Learner Support
Learner Login Learner Support
25% off all training courses
View HIPAA Courses
Offer ends May 29, 2026

The HIPAA Journal is the leading provider of HIPAA training, news, regulatory updates, and independent compliance advice.

Bienville Orthopaedic Specialists Sued Over March 2023 Data Breach

Posted By on Oct 3, 2023

Bienville Orthopaedic Specialists in Gautier, Mississippi, is being sued by a patient whose protected health information was stolen in a February 2023 cyberattack. Bienville Orthopaedic Specialists identified unauthorized activity within its IT systems on March 5, 2023. The forensic investigation confirmed an unauthorized individual had access to its computer systems between February 3, 2023, and March 5, 2023, and exfiltrated sensitive data including names, Social Security numbers, medical information, health insurance information, usernames and passwords, financial account information, and driver’s license numbers. Complimentary credit monitoring and identity protection services were offered to the affected individuals.

The lawsuit was filed by attorney Justin G. Witkin from the law firm Justin G. Witkin in the US District Court for the Southern District of Mississippi on behalf of Bienville patient Robert Harris. The lawsuit alleges Bienville failed to implement reasonable and appropriate security measures to ensure the privacy of its patients, did not follow industry standards for cybersecurity, and failed to comply with federal cybersecurity guidelines. As a result of those failures, the protected health information of almost 243,000 was compromised, and some of that information has been published on the dark web where it is available to anyone.

Mr. Harris claims that he has had to deal with increased numbers of spam calls and emails following the data breach, and has incurred expenses and had to spend time protecting himself against identity theft and fraud. The lawsuit also takes issue with the content of the breach notifications, which did not state what measures were being taken by Bienville to prevent further data breaches in the future.

The lawsuit seeks compensatory damages, payment for credit monitoring and identity protection services, and an order from the court requiring Bienville to implement measures to improve data security.

Get The FREE
HIPAA Compliance Checklist

Immediate Delivery of Checklist Link To Your Email Address

Please Enter Correct Email Address

Your Privacy Respected

HIPAA Journal Privacy Policy

Author: Steve Alder is the editor-in-chief of The HIPAA Journal. Steve is responsible for editorial policy regarding the topics covered in The HIPAA Journal. He is a specialist on healthcare industry legal and regulatory affairs, and has 10 years of experience writing about HIPAA and other related legal topics. Steve has developed a deep understanding of regulatory issues surrounding the use of information technology in the healthcare industry and has written hundreds of articles on HIPAA-related topics. Steve shapes the editorial policy of The HIPAA Journal, ensuring its comprehensive coverage of critical topics. Steve Alder is considered an authority in the healthcare industry on HIPAA. The HIPAA Journal has evolved into the leading independent authority on HIPAA under Steve’s editorial leadership. Steve manages a team of writers and is responsible for the factual and legal accuracy of all content published on The HIPAA Journal. Steve holds a Bachelor’s of Science degree from the University of Liverpool. You can connect with Steve via LinkedIn or email via stevealder(at)hipaajournal.com

x

Is Your Organization HIPAA Compliant?

Find Out With Our Free HIPAA Compliance Checklist

Get Free Checklist