One of the nation’s leading providers of home respiratory services and medical equipment, Apria Healthcare LLC (“Apria”), has announced that it was the victim of a data breach that compromised the sensitive information of nearly two million patients and employees. According to breach notification letters sent to affected individuals, an investigation into the data breach confirmed that Apria’s systems were accessed by an unauthorized third party between April 5, 2019, and May 7, 2019, and again from August 27, 2021, to October 10, 2021. Apria claims the compromised data includes personal, medical, health, and financial information as well as Social Security numbers.
Apria is headquartered in Indianapolis, Indiana and has approximately 280 branch locations across the United States. Apria learned of the data breach of its network nearly two years ago, on September 1, 2021, but just started noticing patients and employees this week. Apria has not explained why it took twenty months from the discovery of the attack for breach notification letters to be issued.
If you received a data breach notification from Apria and would like to discuss it with an attorney regarding a potential claim, you can connect with our attorneys at 855-696-0024 or by completing our free, no-obligation case evaluation form. If you suspect that your information was exposed in the Apria data breach, Morgan & Morgan is here to help.