Breach cyber

Mid South Rehab Services Inc.

Sep 15, 2025 2 min read
Mid South Rehab Services Inc.

On January 16, 2025, Mid South Rehab Services Inc. detected unauthorized access to two employee email accounts by a cybercriminal. The breach exposed sensitive personally identifiable information (PII) and protected health information (PHI), including names, Social Security numbers, dates of birth, medical records, and health data of current and former patients. While the exact number of affected individuals remains undisclosed, the incident poses significant risks of identity theft and fraud due to the exposure of highly sensitive data. The company secured the compromised accounts, engaged external cybersecurity experts for investigation, and notified federal law enforcement. Affected individuals are being informed via mail, and a dedicated support line has been established. The breach stems from a phishing-related compromise of employee credentials, leading to unauthorized access to confidential patient records. The exposure of SSNs and medical data elevates the severity, as such information is highly valuable for malicious activities like financial fraud or medical identity theft.

Source: https://www.claimdepot.com/data-breach/mid-south-rehab-services-2025

TPRM report: https://www.rankiteo.com/company/mid-south-rehab-services

"id": "mid5602456091625",
"linkid": "mid-south-rehab-services",
"type": "Breach",
"date": "1/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'Current and former patients '
                                              '(number not disclosed)',
                        'industry': 'Healthcare/Rehabilitation Services',
                        'name': 'Mid South Rehab Services Inc.',
                        'type': 'Healthcare Provider'}],
 'attack_vector': 'Compromised Employee Email Account',
 'customer_advisories': ['Review notices from Mid South Rehab Services',
                         'Monitor credit and accounts',
                         'Watch for phishing attempts',
                         'Consider fraud alerts/credit freezes'],
 'data_breach': {'data_exfiltration': 'Likely (emails and attachments '
                                      'viewed/accessed)',
                 'file_types_exposed': ['Emails', 'Attachments'],
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High (PII and PHI)',
                 'type_of_data_compromised': ['Names',
                                              'Social Security numbers',
                                              'Dates of birth',
                                              'Medical records',
                                              'Health information']},
 'date_detected': '2025-01-16',
 'description': 'On Jan. 16, 2025, Mid South Rehab Services Inc. discovered '
                'unauthorized activity involving an employee’s email account. '
                'An investigation determined that a cybercriminal gained '
                'access to two employee email accounts and viewed or accessed '
                'certain emails and attachments containing sensitive '
                'personally identifiable information (PII) and protected '
                'health information (PHI), including names, Social Security '
                'numbers, dates of birth, medical records, and health '
                'information. The breach exposed current and former patients '
                'to risks of identity theft and fraud.',
 'impact': {'brand_reputation_impact': 'Potential reputational harm due to '
                                       'exposure of sensitive patient data',
            'data_compromised': ['Personally Identifiable Information (PII)',
                                 'Protected Health Information (PHI)'],
            'identity_theft_risk': 'High (Social Security numbers and health '
                                   'information exposed)',
            'systems_affected': ['Employee Email Accounts']},
 'initial_access_broker': {'entry_point': 'Employee email account(s)',
                           'high_value_targets': ['Patient PII and PHI']},
 'investigation_status': 'Ongoing (investigation launched with outside '
                         'specialists)',
 'recommendations': ['Monitor credit reports and financial accounts for '
                     'unusual activity',
                     'Be alert for phishing attempts using exposed information',
                     'Consider placing a fraud alert or credit freeze with '
                     'major credit bureaus'],
 'references': [{'source': 'Mid South Rehab Services Inc. Notice of Data '
                           'Privacy Event'}],
 'response': {'communication_strategy': ['Published Notice of Data Privacy '
                                         'Event on website',
                                         'Notifying impacted individuals by '
                                         'mail',
                                         'Dedicated assistance line '
                                         '(601-605-6777) for affected '
                                         'individuals'],
              'containment_measures': ['Secured affected email accounts'],
              'incident_response_plan_activated': True,
              'law_enforcement_notified': True,
              'third_party_assistance': 'Outside computer specialists engaged '
                                        'for investigation'},
 'threat_actor': 'Unknown',
 'title': 'Mid South Rehab Services Inc. Email Account Data Breach',
 'type': 'Data Breach (Unauthorized Email Access)'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.