Data breach at NRS affects over 210,000 Harbin Clinic patients

Harbin Clinic, a healthcare provider in Georgia, said a data security incident involving Nationwide Recovery Services exposed the sensitive personal information of over 210,000 individuals.

 

Based in Rome, Georgia, Harbin Clinic is a privately owned, multi-specialty healthcare provider that offers a wide range of services including family medicine, internal medicine, paediatrics, and more.

 

In a data security incident notice published on its website, Harbin Clinic said that in July, one of its service providers, Nationwide Recovery Services, discovered suspicious activity within its internal network. NRS is a third-party vendor that has provided debt collection services for delinquent accounts of individuals treated at Harbin Clinic, bankruptcies, lawsuits and patient estate matters. 

 

NRS immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

“NRS indicated that it determined through an investigation there was unauthorised access to the NRS network between July 5, 2024 and July 11, 2024, during which time certain files and folders were illegally copied from NRS’s systems by someone without authorisation.

 

“NRS notified Harbin Clinic in February 2025 that information from Harbin Clinic’s patients may have been present on the impacted systems,” the healthcare provider said.

 

The compromised data included names, addresses, Social Security numbers, dates of birth and financial account information. The incident was reported to the Maine state regulator where Harbin Clinic said at least 210,140 individuals were impacted by the incident.

 

The clinic added that while its systems were not directly affected by the incident, it “blocked NRS’s access to Harbin Clinic systems until a forensic investigation firm determined the threat had been eradicated from the NRS network” and “conducted a review of its own systems to ensure no indicators of compromise were present in its own network.”

 

While Harbin Clinic found no evidence of the compromised information being misused, it advised all affected individuals to regularly monitor their credit reports, account and benefit statements and report any suspicious activity to law enforcement authorities, including the police and the state attorney general.

 

It has also offered two years of complimentary identity protection and credit monitoring services through Kroll to all affected individuals.