SI-Bone, Inc., a medical device company specializing in minimally invasive surgical solutions for sacropelvic disorders, experienced a significant data breach in October 2025. The incident exposed personal and protected health information (PHI) of potentially thousands of patients, including at least 955 individuals in Texas. Compromised data included names, addresses, Social Security numbers, driver’s license numbers, medical records, and health insurance details.The breach was disclosed to the Texas Attorney General’s office, and affected individuals were notified via print media. The exposure of such sensitive data poses severe risks, including identity theft, financial fraud, and unauthorized medical record access. Patients were advised to enroll in credit monitoring, place fraud alerts, and seek legal recourse. A class action lawsuit is being investigated by Shamis & Gentile P.A. to pursue compensation for victims.Given the nature of the exposed data highly sensitive PHI and personally identifiable information (PII) the breach has profound implications for patient privacy, trust in the company, and potential regulatory penalties under laws like HIPAA. The long-term impact may include reputational damage, financial liabilities, and operational disruptions for SI-Bone.
Source: https://www.claimdepot.com/investigations/si-bone-data-breach-2025
TPRM report: https://www.rankiteo.com/company/si-bone
"id": "si-5392753100125",
"linkid": "si-bone",
"type": "Breach",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'At least 955 (Texas); '
'potentially thousands globally',
'industry': 'Healthcare / Medical Devices',
'location': 'Global (HQ likely in the U.S.)',
'name': 'SI-Bone, Inc.',
'type': 'Medical Device Company'}],
'customer_advisories': 'Affected individuals advised to enroll in credit '
'monitoring, monitor accounts, and seek legal help.',
'data_breach': {'data_exfiltration': 'Likely (data exposed in breach)',
'number_of_records_exposed': 'At least 955 (Texas); total '
'unspecified (potentially '
'thousands)',
'personally_identifiable_information': ['Name',
'Address',
'Social Security '
'number',
'Driver’s license '
'number',
'Medical information',
'Health insurance '
'information'],
'sensitivity_of_data': 'High (includes SSNs, driver’s license '
'numbers, medical, and health '
'insurance information)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)']},
'date_publicly_disclosed': '2025-10-01',
'description': 'SI-Bone, Inc., a medical device company specializing in '
'minimally invasive surgical solutions for sacropelvic '
'disorders, reported a significant data breach in October '
'2025. The breach compromised personal and protected health '
'information (PHI) of patients, including names, addresses, '
'Social Security numbers, driver’s license numbers, medical '
'information, and health insurance details. At least 955 '
'individuals in Texas were confirmed affected, with the total '
'number of impacted individuals potentially reaching '
'thousands. SI-Bone notified affected parties via print media '
'notices. The incident is under investigation by law firms, '
'including Shamis & Gentile P.A., for potential class action '
'lawsuits and compensation claims.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'exposure of sensitive patient data; '
'class action lawsuits initiated.',
'data_compromised': ['Name',
'Address',
'Social Security number',
'Driver’s license number',
'Medical information',
'Health insurance information'],
'identity_theft_risk': 'High (due to exposure of SSNs, driver’s '
'license numbers, and health insurance '
'details)',
'legal_liabilities': 'Potential class action lawsuits and '
'compensation claims for affected '
'individuals.'},
'investigation_status': 'Ongoing (law firms investigating for class action '
'lawsuits; no technical details released).',
'recommendations': ['Enroll in free credit monitoring and identity protection '
'services if offered.',
'Monitor financial statements for suspicious activity.',
'Place a fraud alert on credit reports.',
'Request free annual credit reports from major bureaus.',
'Seek legal counsel for potential compensation claims.'],
'references': [{'source': 'Shamis & Gentile P.A. Investigation Notice'},
{'date_accessed': '2025-10-01',
'source': 'Texas Attorney General’s Office Disclosure'}],
'regulatory_compliance': {'legal_actions': 'Potential class action lawsuits; '
'investigation by law firms (e.g., '
'Shamis & Gentile P.A.).',
'regulatory_notifications': 'Disclosure to Texas '
'Attorney General’s '
'office (October 1, '
'2025).'},
'response': {'communication_strategy': 'Public disclosure via Texas Attorney '
'General’s office; print media notices '
'to affected individuals.',
'recovery_measures': 'Notified affected individuals via print '
'media; offered credit monitoring and '
'identity protection services (implied but '
'not confirmed).'},
'stakeholder_advisories': 'Print media notices to affected individuals; '
'public disclosure via Texas AG.',
'title': 'SI-Bone, Inc. Data Breach (October 2025)',
'type': 'Data Breach'}