Excelsior Orthopaedics Data Breach
Last Updated on January 22, 2025
At A Glance
- What's Going On?
- Attorneys need to hear from Buffalo Surgery Center patients affected by the Excelsior Orthopaedics data breach as they investigate whether a class action lawsuit can be filed.
- What You Can Do
- If you got a letter or email about the breach, fill out the form on this page to learn more about the investigation and how you can help.
- Does This Cost Anything?
- It costs nothing to get in touch or to talk to someone about your rights.
- What Can I Get?
- If filed and successful, a class action lawsuit could provide consumers with money for any harm resulting from the breach.
Excelsior Orthopaedics Data Breach:
Lawsuit Investigation
Attorneys working with ClassAction.org are looking into whether a class action lawsuit can be filed in light of the Excelsior Orthopaedics data breach.
As part of their investigation, they need to hear from Buffalo Surgery Center patients who received a notice stating they were impacted.
On January 3, 2025, Buffalo Surgery Center posted a notice on its website about a data security incident affecting one of its affiliates, Excelsior Orthopaedics, LLC, a New York-based provider of sports medicine and orthopaedic care.
The Excelsior Orthopaedics data breach, initially disclosed in August 2024, resulted in unauthorized access to the sensitive personal information of at least 64,000 individuals associated with Buffalo Surgery Center, whose data was stored on Excelsior's network as part of the administrative and IT-related services it provides to Buffalo Surgery Center.
Excelsior Orthopaedics identified unusual activity on its network on June 23, 2024, leading to an investigation with the help of a third-party cybersecurity firm to determine the scope of the breach and identify affected individuals.
Information exposed in the breach may include demographic data, driver's license numbers, medical and health insurance information, financial information, and some Social Security numbers, varying for each individual.
Ransomware group MONTI has reportedly claimed responsibility for the attack, which may have exposed both patient and employee information for Excelsior, Buffalo Surgery Center and another related entity, Northtowns Orthopaedics.
Excelsior mailed some initial data breach notices in August 2024 and another batch in late December 2024. According to the practice, the investigation is ongoing and any other affected individuals will be mailed notice of the breach as they are identified.
If you are a Buffalo Surgery Center patient whose information was exposed in the breach, attorneys want to hear from you. You may be able to start a class action lawsuit to recover compensation for loss of privacy, time spent dealing with the breach, out-of-pocket costs, and more.
A successful case could also force Buffalo Surgery Center to ensure it takes proper steps to protect the information it was entrusted with.
Take Action
If you are a patient of Buffalo Surgery Center who received a notice regarding the Excelsior Orthopaedics data breach, fill out the form on this page to get in touch with us.
An attorney or legal representative may then reach out to you to explain more about this investigation and ask you a few questions.
Remember, there is no cost to get in touch, and you are under no obligation to take action after speaking to someone.
Before commenting, please review our comment policy.
The information submitted on this page will be forwarded to Milberg Coleman Bryson Phillips Grossman, PLLC who has sponsored this investigation.
Featured In:
Who Is ClassAction.org?
ClassAction.org is a group of online professionals who are committed to exposing corporate wrongdoing and giving consumers the tools they need to fight back.
We've been reporting on the legal space for nearly a decade and have built relationships with class action and mass tort attorneys across the country.
