College Hospital Costa Mesa data breach sparks legal investigation

In March 2025, College Hospital Costa Mesa revealed that a forensic investigation into a 2024 data breach uncovered that additional patients were impacted.

What happened 

College Hospital Costa Mesa (CHCM) recently revealed they are investigating a breach. The breach occurred between August 14 and September 17, 2024, when a threat actor accessed hospital files containing sensitive patient information, including names, diagnoses, dates of birth, Social Security numbers, driver’s license numbers, and appointment details. 

The hospital, a privately owned psychiatric and medical facility in California, has enlisted the Chicago-based law firm Strauss Borrelli PLLC to assess the extent of the breach and identify affected individuals. On March 10, 2025, College Hospital Costa Mesa began sending notification letters to impacted patients, offering complimentary identity monitoring services to those whose Social Security numbers were compromised.

Going deeper 

The breach was first detected on September 17, 2024, when hospital officials noticed a security incident disrupting their operations. In response, CHCM immediately launched an investigation with the help of third-party cybersecurity experts to determine the nature and extent of the breach. The forensic review revealed that hackers had infiltrated hospital files containing sensitive patient data. 

The hospital conducted a comprehensive assessment to identify the individuals affected, and by January 31, 2025, it confirmed the specific data types compromised. The breach prompted legal scrutiny, leading to investigations by Strauss Borrelli PLLC and Levi & Korsinsky, LLP, both of which are evaluating whether affected individuals may be entitled to compensation.

What was said 

According to the notice, CHCM says they “remain committed to protecting the confidentiality and security of patient information, and apologize for the concern this may cause. We are offering complimentary identity monitoring services to patients whose Social Security numbers were involved. Additionally, it is always a good idea for patients to review statements they receive related to their healthcare provider or health insurer.”

Related: HIPAA Compliant Email: The Definitive Guide (2025 Update)

FAQs

How do data breaches happen in hospitals?

Data breaches in hospitals can occur due to various reasons such as:

• Theft or loss of devices: Laptops, smartphones, or paperwork containing sensitive information can be stolen or lost.
• Cyber attacks: Hacking, malware, or unauthorized access to network servers can compromise data.
• Human error: Staff may discuss patient details openly or dispose of sensitive documents improperly.

What types of data are typically compromised?

Commonly compromised data includes:

• Personal identifiers: Names, addresses, social security numbers.
• Health information: Medical records, diagnoses, treatment details.
• Financial data: Insurance information, billing details.

How do data breaches affect hospital productivity?

Data breaches can divert resources away from patient care, impacting hospital productivity.