Arietis Health Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Arietis Health, LLC regarding its recent data breach. The Arietis Health data breach involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.

ABOUT ARIETIS HEALTH, LLC:

Arietis Health is a revenue cycle management company for the healthcare industry. Accordingly, Arietis Health offers a wide range of solutions, including coding, billing, old AR resolution, patient engagement, workers compensation, and advisory services. One of Arietis Health’s clients is NorthStar Anesthesia, which manages healthcare entities that provide anesthesia and pain management services.¹ Founded in 2020, Arietis Health focuses on data-driven and patient-centric solutions for revenue management. Headquartered in Fort Meyers, Florida, Arietis Health has two additional locations in North Carolina and India, and employs over 50 individuals.

WHAT HAPPENED?

On May 31, 2023, Arietis Health discovered that it had experienced a data breach in which the sensitive personal identifiable information and protected health information in its systems may have been accessed and acquired. The sensitive information that may have been accessed and acquired includes information belonging to NorthStar Anesthesia. Through its investigation, Arietis Health determined that an unauthorized actor may have accessed and acquired this sensitive information through a vulnerability in the MOVEit file sharing platform on May 31, 2023. On September 29, 2023, Arietis Health began contacting individuals whose information may have been impacted. The type of information exposed includes:

• Name
• Social Security number
• Address
• Date of birth
• Driver’s license number
• Medical information (e.g., medical record number, patient account number, provider information, diagnosis and treatment information, and clinical and prescription information)
• Health insurance information