Sun Valley Surgery Center, an ambulatory surgery facility in North Las Vegas, Nevada, specializing in pediatric dental and special needs care, suffered a data breach on September 3, 2025, exposing sensitive personally identifiable information (PII) of 27,001 current and former patients. The compromised data included names, contact details, dates of birth, Social Security numbers, driver’s license/state ID information, health insurance details, medical record numbers (MRNs), patient IDs, explanations of benefits, health histories, diagnoses, and treatment records.The breach was formally reported to the U.S. Department of Health and Human Services (HHS) on September 18, 2025. While the exact attack vector remains undisclosed, the exposure of highly sensitive health and financial data poses severe risks, including identity theft, financial fraud, and unauthorized medical record access. Affected individuals were advised to enroll in credit monitoring, place fraud alerts, and seek legal recourse for potential compensation due to the breach’s severe implications on privacy and security.
Source: https://www.claimdepot.com/investigations/sun-valley-surgery-center-data-breach-2025
TPRM report: https://www.rankiteo.com/company/atlas-healthcare-partners-llc
"id": "atl0592905111325",
"linkid": "atlas-healthcare-partners-llc",
"type": "Breach",
"date": "9/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '27,001',
'industry': 'Healthcare (Pediatric Dental & Special '
'Needs Care)',
'location': 'North Las Vegas, Nevada, USA',
'name': 'Sun Valley Surgery Center',
'type': 'Ambulatory Surgery Center'}],
'customer_advisories': 'Patients advised to enroll in credit monitoring, '
'monitor accounts, and seek legal help if affected.',
'data_breach': {'data_exfiltration': 'Likely (data exposed in breach).',
'number_of_records_exposed': '27,001',
'personally_identifiable_information': ['Name',
'Contact information',
'Date of birth',
'Social Security '
'number',
'Driver’s '
'license/state-issued '
'ID',
'Health insurance '
'information',
'MRN/patient ID',
'Health history',
'Treatment/diagnosis '
'information'],
'sensitivity_of_data': 'High (includes SSNs, health records, '
'and government-issued IDs).',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)']},
'date_detected': '2025-09-03',
'date_publicly_disclosed': '2025-09-18',
'description': 'Sun Valley Surgery Center, an ambulatory surgery center in '
'North Las Vegas, Nevada, discovered a data breach on '
'September 3, 2025, exposing sensitive personally identifiable '
'information (PII) and protected health information (PHI) of '
'27,001 current and former patients. The breach was officially '
'disclosed to the U.S. Department of Health and Human Services '
'on September 18, 2025. Affected data includes names, contact '
'details, Social Security numbers, driver’s license/state ID '
'information, health insurance details, medical record numbers '
'(MRN), health history, treatment/diagnosis information, and '
'more. The incident is under investigation by Shamis & Gentile '
'P.A. for potential legal claims and compensation for affected '
'individuals.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'exposure of sensitive patient data; '
'legal investigations ongoing.',
'data_compromised': ['Name',
'Contact information',
'Date of birth',
'Social Security number',
'Driver’s license or state-issued ID '
'information',
'Health insurance information',
'MRN number or patient identification number',
'Explanation of benefits',
'Health history',
'Health information',
'Treatment and diagnosis information'],
'identity_theft_risk': 'High (due to exposure of SSNs, driver’s '
'license/ID info, and health insurance '
'details).',
'legal_liabilities': 'Potential lawsuits and compensation claims '
'for affected individuals.'},
'investigation_status': 'Ongoing (legal investigation by Shamis & Gentile '
'P.A.).',
'recommendations': ['Enroll in free credit monitoring and identity protection '
'services if offered.',
'Monitor financial accounts for suspicious activity.',
'Place a fraud alert on credit reports.',
'Request free annual credit reports from major bureaus.',
'Seek legal counsel for potential compensation claims.'],
'references': [{'date_accessed': '2025-09-03',
'source': 'Sun Valley Surgery Center Breach Disclosure'},
{'source': 'Shamis & Gentile P.A. Investigation Notice'}],
'regulatory_compliance': {'legal_actions': 'Under investigation by Shamis & '
'Gentile P.A. for class action '
'lawsuits.',
'regulations_violated': ['Potential HIPAA '
'violations (exposure of '
'PHI).'],
'regulatory_notifications': 'Disclosed to U.S. '
'Department of Health '
'and Human Services '
'(Sept. 18, 2025).'},
'response': {'communication_strategy': 'Public disclosure via website (Sept. '
'3, 2025) and notification to U.S. '
'Department of Health and Human '
'Services (Sept. 18, 2025). '
'Notification letters sent to affected '
'individuals.',
'recovery_measures': 'Offered free credit monitoring and '
'identity protection services to affected '
'individuals.'},
'stakeholder_advisories': 'Notification letters sent to affected patients; '
'public disclosure on website.',
'title': 'Sun Valley Surgery Center Data Breach',
'type': 'Data Breach'}