Data Breach Summary
Reports have surfaced suggesting that Greater Pittsburgh Orthopaedic Associates (GPOA), one of Pittsburgh’s oldest orthopaedic surgical practices, may have been targeted in a ransomware attack by the threat group RansomHouse. As of now, GPOA has not confirmed the breach, but the situation underscores the growing cybersecurity risks facing healthcare providers in the United States. Affected individuals are advised to remain vigilant and monitor important financial information.
The ransomware attack, discovered on August 20, 2025, may have compromised sensitive internal data. RansomHouse issued a public statement threatening to release the stolen information unless GPOA contacted the group via the channels provided.
GPOA operates seven offices across the Pittsburgh metro area and provides a wide range of orthopaedic care to patients of all ages. While the full scope of data compromised is still being investigated, the threat of public release by the ransomware group highlights the potential risks to patients and employees.
The exposed information could include personal and health-related data, such as:
Names
Social Security Numbers
Clinical Information (diagnosis, conditions, lab results, medications, and other treatment details)
Demographic Information (address, date of birth, driver’s license or state ID numbers, or other personal identifiers)
Financial Information (claims information, financial account or payment card details)
The affected individuals may have had sensitive health and financial data exposed due to the unauthorized access.
If you believe you may have been affected by this breach, it is important to take proactive steps to protect your personal information. We encourage individuals to:
Monitor Financial Accounts: Regularly check your bank and credit card statements for unfamiliar transactions.
Review Explanation of Benefits: Carefully review any Explanation of Benefits (EOB) statements for suspicious claims or services.
Monitor Credit Reports: Take advantage of free credit reports to monitor for any signs of identity theft or fraudulent activity.
Report Suspicious Activity: Immediately report any suspicious activity to your insurance company, healthcare provider, and/or financial institution.
If you received a notification about the breach, you may want to explore your legal options. Greater Pittsburgh Orthopaedic Associates to protect sensitive patient data has potentially exposed individuals to identity theft and other risks. You could be eligible to join a class action lawsuit against Greater Pittsburgh Orthopaedic Associates for damages caused by the breach.
To determine if you qualify for the class action lawsuit or need further legal support, contact Class Action U for a free consultation. Our legal experts can help you navigate the next steps and ensure that your voice is heard in the fight for justice and accountability.
©2024 ClassActionU
