UPDATED: June 8, 2026

Minnesota Epilepsy Group Data Breach

Minnesota Epilepsy Group (MEG) has notified patients of a data breach after discovering unauthorized access to its computer network on April 7, 2026. An investigation found that a threat actor may have accessed and acquired files between March 16 and April 10, 2026.

Minnesota Epilepsy Group

Date of Breach: April 7, 2026

Who was affected:

Clients of Minnesota Epilepsy Group

Impacted Data:

Full names

Addresses

Dates of birth

Social Security numbers

One of the largest epilepsy-focused healthcare providers in the Midwest, has disclosed a data breach that may have exposed sensitive personal information belonging to patients. The incident was discovered in April 2026 after the organization identified unauthorized access to its computer network.

Founded in 1954, Minnesota Epilepsy Group specializes in the diagnosis and treatment of epilepsy and other seizure disorders. The practice operates multiple clinics throughout Minnesota and provides neurological care to thousands of patients annually.

Minnesota Epilepsy Group Data Breach Investigations

According to a notification sent to affected individuals, Minnesota Epilepsy Group discovered on April 7, 2026, that an unauthorized third party may have gained access to its computer network. Upon learning of the incident, the healthcare provider launched an internal investigation, secured its systems, notified law enforcement, and retained a forensic cybersecurity firm to assist with the response.

The forensic investigation revealed that the unauthorized actor had access to portions of the network between March 16, 2026, and April 10, 2026. During that period, certain files may have been viewed or acquired by the threat actor.

Information Potentially Exposed

Following a review of the affected files, Minnesota Epilepsy Group determined on May 18, 2026, that some patients’ personal information was contained within the compromised data. The information may have included:

Full names
Addresses
Dates of birth
Social Security numbers

The organization stated that it has no evidence that the information has been misused for fraud or identity theft. However, affected individuals are being notified out of an abundance of caution.

What You Can Do

Enroll in the one-year credit monitoring and identity theft protection offered through Kroll to receive alerts and fraud assistance.

Monitor all financial accounts and credit reports for suspicious activity. Consider placing a fraud alert or security freeze with Equifax, Experian, and TransUnion to prevent unauthorized accounts from being opened.

Remain alert for phishing attempts or suspicious communications, and keep documentation of any fraudulent activity or identity misuse for potential legal or financial resolution.

File a Data Breach Lawsuit Against Minnesota Epilepsy Group

If you received notification that your information was compromised in this incident, you may be eligible to join a class action lawsuit.

Class action lawsuits allow affected individuals to seek compensation for identity theft risks, financial losses, out-of-pocket expenses, and time spent mitigating the breach. Legal action can also encourage stronger cybersecurity protections and improved safeguards for personal information in the future.

Contact us at Class Action U, where we’ll connect you with a lawyer skilled in class action lawsuits. If you’ve been contacted about this breach, received notice, or discovered you were impacted, fill out our quick, easy, and secure form to sign up. There is no cost to reach out to our legal partner and no obligation after speaking with someone from our team.

Subscribe To Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

Other Data Breaches

Virta Health Data Breach

Date of Breach: March 24, 2026

Oak View Group Data Breach

Date of Breach: January 19, 2026

Jackpocket Interactive Gaming Data Breach

Date of Breach: May 14, 2026

Frequently Asked Questions

What Should I Do If I Believe My Data Has Been Breached?

A data breach occurs when sensitive, confidential, or protected information is accessed, stolen, or disclosed without authorization. Data breaches often occur through phishing emails, malware, weak passwords, insider threats, or unsecured databases. Indicators of a data breach can include unexpected password resets, suspicious account activity, unauthorized transactions, or notifications from companies about compromised information.If you suspect your data has been compromised, you must take measures and act quickly. Change passwords, enable two-factor authentication, review your financial accounts for unusual activity and consider freezing your credit.

What Happens to Your Data in a Data Breach?

Once stolen, your personal information may be sold on the dark web or used for identity theft and financial fraud. In some cases, hackers use the data to extort companies or launch further attacks. Victims often face long-term risks, including damage to credit and privacy.

How Should I Respond to a Data Breach Notification?

If you receive a data breach notification, don’t ignore it. Immediately change passwords for the affected account and any others that share credentials. Enroll in any free credit monitoring services offered and monitor financial statements closely.

What Evidence is Needed for a Data Breach Claim?

To pursue a data breach claim, you’ll need documentation showing your information was compromised and proof of resulting harm, such as fraudulent charges, credit score damage, or identity theft reports. Notification letters, financial records, and communication with the breached company can help support your claim.

Can a Company Be Sued for a Data Breach?

Yes. If a company fails to protect consumer data or delays notifying victims, it may be held liable under state and federal privacy laws. Many victims join class action lawsuits to recover financial losses and hold negligent organizations accountable.

What is the Average Settlement in a Data Breach Lawsuit?

Data breach settlements vary widely depending on the size of the breach, type of data compromised, and damages suffered by victims. Payouts may include cash compensation, identity theft protection, or reimbursement for losses. Many settlements range from a few hundred to several thousand dollars per person. A skilled data breach lawyer can guide victims through the complex legal process, ensuring their rights are protected. If you’ve received a data breach notification or believe your personal data was exposed, you may be eligible for compensation. Contact Class Action U to learn more about how to join a data breach lawsuit and understand the process of filing.