Notice of Breach of Personal Information

Notice of Breach of Personal Information Main Content

Philips Respironics Notice of Breach of Personal Information


[Jacksonville, FL, May 24, 2024] – On December 21, 2023, Baptist Heart Specialists learned about a cybersecurity incident involving Philips Respironics’ use of a software made by a third party, Progress Software, as a system for exchanging files containing therapy data from sleep and respiratory devices. The software MOVEit Transfer is widely used by organizations to transfer files contained a vulnerability allowing it to be exploited.

The investigation performed by Philips Respironics revealed that information was accessed by unauthorized actors on May 31, 2023, due to the vulnerability in MOVEit Transfer software. The affected personal information may have included names, contact information, dates of birth, medical information relating to sleep and respiratory care, and health insurance information. The investigation determined that financial information such as social security numbers or credit card information was not included in this incident. After gathering all relevant information, Philips Respironics informed the Baptist Heart Specialist that personal information of approximately individuals 9,425 was exposed.

Philips Respironics notified impacted patients for whom it had current contact information and arranged to provide identity protection services including credit monitoring at no charge to affected patients. Individuals who did not receive notification but believe their information may have been affected can call 888-541-7970, Monday through Friday, 9 AM to 9 PM Eastern Time.