OCH Regional Medical Center Data Breach Lawsuit Investigation
File Your Claim Now

Dapeer Law, P.A., a top-rated class action law firm, is investigating the OCH Regional Medical Center data breach. If you received notice that your information was exposed during this breach, you may be entitled to compensation. It's free to join our investigation to see if we can help you recover.

OCH Regional Medical Center Data Breach Lawsuit Investigation

Received a worrying letter from OCH Regional Medical Center? Your Social Security number, medical records, and other personal data may be in criminal hands. Find out how to protect yourself and whether you’re eligible to join a lawsuit seeking compensation.

Download Official Breach Notice (PDF)

What Happened?

On September 8, 2023, OCH Regional Medical Center (OCH) in Starkville, Mississippi, experienced unauthorized access to its network. The intrusion remained undetected until September 14, 2023. By the time it was contained, hackers had accessed files containing sensitive personally identifiable information (PII) and protected health information (PHI) for 51,266 patients nationwide, including four Massachusetts residents.

Information Exposed

The combination of data stolen in this incident dramatically raises the risk of identity theft, medical fraud, and financial harm:

  • Full names
  • Social Security numbers
  • Dates of birth
  • Home and mailing addresses
  • Government-issued ID numbers
  • Medical records, diagnoses & disability codes
  • Insurance and payer details
  • Account and financial information
  • Phone numbers

Timeline of Events

  • Sept 8, 2023: Unauthorized access began.
  • Sept 14, 2023: OCH discovered and contained the breach.
  • Mar 11, 2025: Incident reported to the U.S. Department of Health & Human Services.
  • Jun 13, 2025: Incident reported to the Massachusetts Attorney General’s Office and public notice issued.
  • Current: Notifications mailed to affected individuals and investigation ongoing.

Your Legal Options

Victims of data breaches frequently incur out-of-pocket costs monitoring credit, correcting fraudulent medical records, or dealing with tax and insurance fraud. State and federal laws—such as HIPAA and consumer-protection statutes—may entitle you to monetary damages and injunctive relief. By joining a class action or mass arbitration, you can:

  • Seek reimbursement for identity-theft expenses.
  • Demand stronger data-security measures from OCH.
  • Pursue statutory damages where allowed by law.

Important: Deadlines to take action can be as short as one year in some states. Act promptly to preserve your rights.

Protect Yourself Now

Whether you decide to pursue legal action or not, experts recommend the following steps immediately:

  • Order and review your credit reports for free at AnnualCreditReport.com.
  • Place a fraud alert or credit freeze with Equifax, Experian, and TransUnion.
  • Monitor Explanation of Benefits (EOB) statements for unfamiliar medical services.
  • Use multi-factor authentication (MFA) on sensitive accounts.
  • Watch for phishing emails referencing OCH or your medical information.

Next Steps: Join the Investigation

If you received OCH’s breach notice (or believe you should have), you may qualify for compensation. Legal teams are actively investigating potential claims against OCH Regional Medical Center for failing to adequately safeguard patient data. Complete a free, no-obligation case review today to find out your options.

Frequently Asked Questions

What should I do if I got an OCH Regional Medical Center breach letter?

Follow the instructions in the letter, enroll in any offered credit-monitoring service, and consider adding extra layers of protection such as a credit freeze. Keep all documentation; it may be needed for a claim.

Can I sue OCH Regional Medical Center for the data breach?

Possibly. Courts have allowed patients to seek damages for costs related to credit monitoring, identity theft, and emotional distress. Eligibility depends on your state laws and individual circumstances.

How much could victims receive from an OCH Regional Medical Center data breach lawsuit?

Settlements vary widely, but past healthcare data-breach cases have awarded victims cash payments, identity-theft protection, and commitments to upgrade security. Joining a class action increases negotiating power.

What information did the hackers access at OCH Regional Medical Center?

According to regulatory filings, exposed data included names, Social Security numbers, dates of birth, medical records, addresses, account numbers, government IDs, insurance details, and phone numbers.

Is OCH Regional Medical Center paying for credit monitoring?

The notice indicates that complimentary credit-monitoring services are being offered. Sign up promptly; declining could weaken future reimbursement claims.

This article is for informational purposes only and does not constitute legal advice. Consult a qualified attorney to discuss your specific situation.

Attorney Advertising. Prior results do not guarantee a similar outcome.

File Your Claim Now