Trinity Emergency Physicians, LLC, a Birmingham, Alabama-based healthcare provider specializing in emergency medicine, suffered a data breach after its third-party administrator, ApolloMD Business Services, detected unauthorized network access on May 22–23, 2025. The cyberattack exposed sensitive patient data, including names, Social Security numbers, dates of birth, addresses, diagnosis/treatment records, provider details, service dates, and health insurance information. The breach impacted thousands of patients across affiliated practices, with notifications sent on September 17, 2025. The compromised data poses risks of identity theft, financial fraud, and medical identity misuse, prompting legal investigations for potential class-action lawsuits. Affected individuals are advised to enroll in credit monitoring, place fraud alerts, and seek legal recourse for compensation.
Source: https://www.claimdepot.com/investigations/trinity-emergency-physicians-data-breach-2025
TPRM report: https://www.rankiteo.com/company/iep-independentemergencyphysicians
"id": "iep3202532092825",
"linkid": "iep-independentemergencyphysicians",
"type": "Breach",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Thousands of patients (exact '
'number undisclosed)',
'industry': 'Healthcare (Emergency Medicine)',
'location': 'Birmingham, Alabama, USA',
'name': 'Trinity Emergency Physicians, LLC',
'size': '120+ reassigned providers',
'type': 'Healthcare Provider'},
{'industry': 'Healthcare Support',
'name': 'ApolloMD Business Services',
'type': 'Administrative Services Provider'},
{'industry': 'Healthcare',
'name': 'Affiliated ApolloMD Physician Practices',
'type': 'Healthcare Providers'}],
'customer_advisories': ['Notification letters mailed to affected individuals '
'(2025-09-17)',
'Public advisory on ApolloMD website'],
'data_breach': {'data_exfiltration': 'Likely (files containing PII/PHI were '
'compromised)',
'number_of_records_exposed': 'Thousands (exact number '
'undisclosed)',
'personally_identifiable_information': ['Names',
'Social Security '
'numbers',
'Dates of birth',
'Addresses',
'Diagnosis '
'information',
'Treatment '
'information',
'Health insurance '
'details'],
'sensitivity_of_data': 'High (includes SSNs, medical records, '
'and insurance details)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)']},
'date_detected': '2025-05-22',
'date_publicly_disclosed': '2025-09-17',
'description': 'Shamis & Gentile P.A. is investigating a data breach at '
'Trinity Emergency Physicians, LLC, where an unauthorized '
"party accessed ApolloMD Business Services' internal network "
'on May 22–23, 2025. The breach exposed sensitive personally '
'identifiable information (PII) and protected health '
'information (PHI) of patients, including names, Social '
'Security numbers, dates of birth, addresses, '
'diagnosis/treatment details, provider names, and health '
'insurance information. Affected individuals were notified by '
'mail on September 17, 2025. The incident may impact thousands '
'of patients across multiple affiliated physician practices.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'exposure of sensitive patient data',
'data_compromised': ['Names',
'Social Security numbers',
'Dates of birth',
'Addresses',
'Diagnosis information',
'Provider names',
'Dates of service',
'Treatment information',
'Health insurance information'],
'identity_theft_risk': 'High (due to exposure of SSNs and PHI)',
'legal_liabilities': 'Potential class action lawsuits (e.g., '
'investigation by Shamis & Gentile P.A.)',
'systems_affected': ['ApolloMD Business Services internal '
'network']},
'initial_access_broker': {'high_value_targets': ['Patient PII/PHI data']},
'investigation_status': 'Ongoing (class action lawsuit investigation in '
'progress)',
'recommendations': ['Enroll in free credit monitoring services (if offered)',
'Monitor financial statements for suspicious activity',
'Place a fraud alert on credit reports',
'Request free annual credit reports from major bureaus',
'Seek legal counsel for potential compensation'],
'references': [{'source': 'Shamis & Gentile P.A. (Class Action Investigation '
'Notice)'},
{'source': 'ApolloMD Business Services (Data Security Incident '
'Notice)'}],
'regulatory_compliance': {'legal_actions': ['Class action lawsuit '
'investigation by Shamis & '
'Gentile P.A.'],
'regulations_violated': ['Potential HIPAA '
'violations (unauthorized '
'access to PHI)']},
'response': {'communication_strategy': ['Public notice posted on ApolloMD '
'website',
'Mail notifications sent to affected '
'individuals on 2025-09-17'],
'incident_response_plan_activated': 'Yes (investigation launched '
'after detecting suspicious '
'activity)'},
'threat_actor': 'Unauthorized party (unknown)',
'title': 'Trinity Emergency Physicians, LLC Data Breach via ApolloMD Business '
'Services',
'type': ['Data Breach', 'Unauthorized Access']}