Burr & Forman LLP, a law firm based in Birmingham, Alabama, recently faced a data security incident affecting some of its clients. The anomaly was discovered on one of the firm’s laptops on October 23, 2023, prompting the activation of Burr & Forman’s Incident Response Plan and engagement with cybersecurity experts for an investigation. The unauthorized access resulted in the exposure of certain documents and information, and by November 10, 2023, it was determined that personal information, including names, Social Security numbers, medical coding details, and insurance information, was compromised. The incident did not impact the computer systems of Oceans Healthcare, a client of Burr & Forman.
Following the discovery, Burr & Forman promptly initiated its response plan and involved cybersecurity experts to investigate the incident. The compromised data included sensitive information such as names, Social Security numbers, medical coding details, and insurance information. The affected individuals were notified, and Burr & Forman collaborated with Oceans Healthcare to coordinate the response and provide necessary notices. While the incident led to enhanced network security measures, the law firm has also reported the incident to the Federal Bureau of Investigation to hold the perpetrators accountable. Additionally, Burr & Forman has established a toll-free call center to address questions from affected individuals and expresses regret for any inconvenience or concern caused by the incident.
The law firm emphasizes its commitment to the security and privacy of information, taking the matter seriously by implementing measures to enhance network security. Despite the breach, Burr & Forman assures that its clients’ computer systems were not affected by the incident. The privacy and protection of personal and health information remain a top priority for the firm, reinforcing its dedication to addressing the aftermath of the data security incident and ensuring the well-being of affected individuals.