Skip to main content

OrthoMinds Data Breach Investigation

Written by Joseph Lyon on . Posted in Data Breach.

The data breach lawyers at The Lyon Firm are reviewing a “hacking/IT incident” at OrthoMinds, reported to the HHS office in January 2025. At the time of the notice, the company said around 500 individuals may have had their personal information impacted. This number may have been greatly underestimated. More details should be emerging in the coming weeks, and the company has begun sending out data breach notification letters to all impacted by the incident.

Contact a data theft attorney if you believe your data may have been leaked or stolen in any data breach incident. It is important to understand the risks following security breaches, and to move to minimize the possibilities of fraud and medical identity theft. Our legal team has filed numerous class action data breach lawsuits and we represent clients in all fifty states. Call for a free consultation and case review.

What Happened at OrthoMinds?

The vendor of cloud-based orthodontic practice software is now notifying patients that their data was exposed back in November 2024. A security researcher discovered the unsecured database, and has said tens of thousands of individuals may be impacted.

When they learned of the incident, OrthoMinds started an investigation into the nature and scope of the breach and concluded that files and folders stored on certain company databases may have been accessible to hackers. This forced the company to admit that it may have been targeted in a breach in which sensitive personal identifiable information and protected health information may have been accessed. The types of personal information potentially exposed include the following:

  • Name
  • Social Security number
  • Date of birth
  • Payment card information
  • Medical information
  • Health insurance information

Operating out of Alpharetta, Georgia, OrthoMinds, LLC is a healthcare technology company that provides cloud-based practice management software specifically designed for orthodontic practices. The company offers software for scheduling, billing, electronic health records, imaging, and patient communication.

Healthcare companies have been top targets for hackers attempting to steal personal data because of the amount of valuable information typically stored on their networks. We believe they do, however, have a duty to prevent such attacks, and to establish a robust IT security system to protect sensitive data.