A major cyber incident breached the systems of a technology vendor, resulting in the theft of a staggering half a million personal health records, according to a report by TechCrunch.
The attack, carried out earlier this year, has raised significant concerns about data security and the potential consequences for affected individuals and organizations.
Health Data Breach
Intellihartx, a company based in Tennessee known for its role in managing patient payment balances and collections, recently disclosed the alarming extent of the breach.
According to a notice filed with the Maine attorney general's office, 489,830 patients had their information compromised during the targeted cyberattack on Fortra, the vendor associated with Intellihartx.
The notice revealed the range of sensitive data that fell into the hands of the hackers. Patient names, addresses, dates of birth, and Social Security numbers were among the information stolen, posing a serious threat to the affected individuals.
Additionally, the breach compromised medical billing, insurance details, and confidential diagnoses and medication records.
The gravity of this incident is further highlighted by the fact that Intellihartx is not the only victim in this series of high-profile attacks. Fortra's GoAnywhere file-transfer software, a widely adopted platform for sharing large data sets across the internet, has become a prime target for cybercriminals.
The cybercriminal group, Clop, has asserted accountability for taking advantage of a previously undisclosed vulnerability in Fortra's software. This flaw enabled them to infiltrate the networks of more than a hundred organizations and companies, resulting in a widespread impact.
Among the prominent victims of this aggressive cyber campaign are Hatch Bank, a digital financier, Rubrik, a renowned security firm, and even the City of Toronto.
Data Breach Notice
The repercussions of this breach reverberate throughout the healthcare industry, where the security and confidentiality of patient information are paramount.
The potential consequences are deeply concerning, with half a million personal health records now compromised. The stolen data could be exploited for various malicious purposes, posing significant risks to the privacy and well-being of the individuals affected.
Intellihartx has taken immediate action to address the breach, filing the required data breach notifications and initiating a written notification process for affected individuals.
The notice, issued on June 8, 2023, aims to inform those impacted by the incident, providing them with essential details and steps to mitigate potential harm.
Related Article : Russia and Iran State-Linked Hackers Are Increasingly Attacking Politicians, Journalists - UK Cybersecurity Center Alleges
