Vail Summit Orthopaedics Data Breach Exposes Social Security Numbers

On Aug. 6, 2024, Vail Summit Orthopaedics discovered suspicious activity within its email environment, signaling the start of a significant data breach. The company responded by engaging external cybersecurity and data privacy forensic specialists to conduct a thorough investigation. This investigation confirmed that an unauthorized third party had accessed and acquired certain files from Vail Summit Orthopaedics’ systems.

After an extensive review, the company determined on July 24, 2025, which individuals’ sensitive information was potentially impacted. The cybersecurity incident was disclosed to the U.S. Department of Health and Human Services on July 31, 2025 reporting over 5,000 patients affected.

According to a disclosure filed with the Massachusetts Attorney General on July 31, 2025, compromised information may have included names, addresses, email addresses, phone numbers, dates of birth, Social Security numbers, health insurance numbers, financial account details, medical diagnoses, treatment and procedure information, medical history, allergies, prescription drugs taken, medical test results and images, vital signs, dates and locations of medical treatment and the names of healthcare providers.

Vail Summit Orthopaedics's response

Vail Summit Orthopaedics is offering complimentary single-bureau credit monitoring, credit reports and credit score services for a period of months from enrollment. These services are provided through Cyberscout, specializing in fraud assistance and remediation. Impacted individuals are encouraged to enroll within 90 days of receiving their notification letter to take advantage of these protections.

Additionally, the company recommends that all affected individuals remain vigilant by reviewing account statements and monitoring credit reports for any suspicious or unauthorized activity. Security experts suggest contacting financial institutions and the major credit bureaus to inform them of the breach and to consider placing a fraud alert or security freeze on credit files. The company has also provided a dedicated assistance line at 833-799-7055 for questions or support.