Greater St. Louis Oral & Maxillofacial Surgery Data Breach

In October 2025, Greater St. Louis Oral & Maxillofacial Surgery PC (GSLOMS), a medical practice specializing in oral and maxillofacial surgery, discovered unauthorized access to an employee email account. The data security incident exposed personally identifiable information (PII) and protected health information (PHI) of potentially thousands of current and former patients.

This breach was used to distribute a phishing email. Upon detection, GSLOMS took immediate steps to secure the account, including changing passwords, revoking session tokens, and resetting multifactor authentication.

The exposed information includes names, telephone numbers, dates of service, treatment codes or brief descriptions of treatment, and health insurance information. The exposure of PII and PHI puts individuals at risk of identity theft and medical fraud.

The incident was reported to the U.S. Department of Health and Human Services on Dec. 4, 2025. The company also posted a Notice of Data Breach on its website.

Greater St. Louis Oral & Maxillofacial Surgery's response

After discovering the breach, GSLOMS immediately contained the unauthorized activity by updating security credentials and engaging data security and privacy professionals to investigate. The company continues to analyze the incident and is working to identify and notify all potentially affected individuals in a timely manner.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Greater St. Louis Oral & Maxillofacial Surgery.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For further questions, GSLOMS has set up a dedicated phone line at 314-721-1010, available Monday through Friday from 9 a.m. to 4 p.m. CT.