Mission Health Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Mission Health regarding its recent data breach. The Mission Health data breach involved sensitive personal identifiable information and protected health information belonging to an undetermined number of individuals.


Mission Health is a hospital and healthcare provider serving western North Carolina. A collective of 8 hospitals, Mission Health offers its patients comprehensive healthcare services, including emergency and trauma care, primary care, cancer care, cardiology, genetics and personalized medicine, imaging, laboratory services, mental and behavioral health, neurology, rehabilitation, and surgery. Headquartered in Asheville, North Carolina, Mission Health was founded in 1885 by four women who had a vision to create a place to help care for the people of Ashville. Today, over 135 years later and with over 10,000 employees, Mission Health is the largest employer in western North Carolina.


On May 31, 2023, a third-party vendor of Mission Health, Nuance Communications, discovered that it had experienced a data breach in which the sensitive personal identifiable information and protected health information in its systems may have been accessed. Through its investigation, Nuance Communications determined that an unauthorized actor may have accessed this sensitive information through a vulnerability in the MOVEit file sharing platform between May 28 and May 29, 2023. On September 22, 2023, Nuance Communications began contacting individuals whose information may have been impacted. The type of information exposed includes:

  • Name
  • Social Security number
  • Date of birth
  • Address
  • Health insurance information
  • Demographic information
  • Medical information

If you received a breach notification letter from Mission Health or Nuance Communications, Inc.:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or sam@turkestrauss.com.

If you were impacted by the Mission Health data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in free credit monitoring service provided by Mission Health or Nuance Communications, Inc.;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: