Vantage Plastic Surgery Discloses Data Breach Affecting Patient Data

Vantage Plastic Surgery, a New York City plastic surgery practice, recently disclosed a data breach that may have affected the personal and medical information of approximately 4,600 patients. The practice operates as VPS Medical PLLC and is located at 791 Park Ave., Suite 1B, in New York.

The practice discovered the breach on Jan. 15, 2026, and began notifying patients in mid-February.

How the breach unfolded

On Jan. 15, 2026, Vantage Plastic Surgery learned that an unauthorized party had gained access to computer systems containing patient information, according to the company's notification.

The practice launched an investigation and brought in third-party cybersecurity experts to help determine what had happened.

It reported the incident to law enforcement, including the U.S. Department of Health and Human Services. The practice posted a public notice about the incident on Feb. 14, 2026.

By Jan. 22, 2026, the investigation had determined that certain patient data may have been acquired by the unauthorized party. The practice did not provide additional details about how the unauthorized access occurred or who may have been responsible.

The information potentially affected varies by individual but may include contact information (home address, phone number and email address) and protected health information. The protected health information includes patients' first and last names, dates of birth and medical record information.

What the practice is doing in response

Vantage Plastic Surgery is offering affected patients 12 months of complimentary identity theft protection services through IDX, a data breach and recovery services company. These services include credit monitoring, CyberScan monitoring and fully managed identity theft recovery services.

Individual notification letters with additional information about protective steps are being sent to affected patients.

Patients who have questions about the breach can call the practice's dedicated response line at 888-201-3019, available Monday through Friday from 9 a.m. to 5 p.m. Eastern Time.

Patients may also write to Vantage Plastic Surgery at 791 Park Ave., Suite 1B, New York, NY 10021.

Steps affected patients can take to protect themselves

Patients should consider enrolling in the free identity theft protection services being offered by the practice through IDX. These services include credit monitoring and identity theft recovery assistance at no cost for 12 months.

Patients should also monitor their health insurance statements closely. When health information is exposed in a breach, there is a risk it could be used for medical identity theft. Patients should review any Explanation of Benefits statements they receive from their health insurance plan.

Keeping copies of personal medical records can also help patients spot any unauthorized changes or unfamiliar entries.

Patients should be wary of any unexpected messages that ask for additional personal information or direct them to unfamiliar websites, especially any that reference Vantage Plastic Surgery or this specific breach.

It is also a good idea for affected patients to regularly check their credit reports for any unfamiliar accounts or activity. Free credit reports are available from each of the three major credit bureaus (Equifax, Experian and TransUnion) through AnnualCreditReport.com.

Finally, patients should keep an eye on their financial accounts and stay alert for any unusual activity. If they notice anything suspicious, they should report it to their financial institution promptly.