Ethical Hacking News
A large-scale healthcare data breach has exposed up to 400,000 individuals' personal info. The breach was discovered by a Houston-based services provider that offers revenue cycle and management services to healthcare organizations. Those affected will receive credit monitoring and identity protection services.
Up to 400,000 healthcare patients' sensitive information was exposed in a recent data breach. The breach occurred when a malicious attacker gained access to the systems of one of Gryphon's customers on July 6, 2024. Potentially exposed patient medical data, including diagnoses and health insurance information. Gryphon Healthcare is offering 12 months of credit monitoring and identity protection services to those affected. The incident highlights the importance of robust cybersecurity measures and prioritizing data protection.
A recent data security incident has exposed the sensitive information of up to 400,000 individuals, primarily healthcare patients. The breach was discovered by Gryphon Healthcare, a Houston-based services provider that offers revenue cycle and management services to healthcare organizations.
According to the company's filing with Maine's Attorney General, the first time the data was accessed by an unauthorized person was on July 6, 2024. It is believed that a malicious attacker gained access to the systems of one of Gryphon's customers, which may have resulted in the theft of patients' names, dates of birth, addresses, Social Security numbers, and other sensitive information.
The data breach also potentially exposed patient medical data, including diagnoses, details of medical treatments, prescriptions, health insurance information, and medical record numbers. It is worth noting that Gryphon Healthcare stated that it takes the privacy and security of all information within its possession very seriously.
As part of its response to the breach, the company offered 12 months of credit monitoring and identity protection services to those affected. The incident has also sparked the interest of lawyers, who are reportedly preparing a proposed class-action lawsuit on behalf of the victims.
The data breach is not an isolated incident, as there have been several similar cases in recent times. For instance, Med-Data, another revenue cycle management company based in Texas, agreed to a $7 million settlement with victims whose data was stolen in 2022. Each victim was able to claim up to $5,000 for their ordeal.
In addition, a $65 million settlement was recently reached by Pennsylvania-based Lehigh Valley Health Network for its 2023 ALPHV/BlackCat breach. The lawyers who won the case claimed that the settlement was "the largest of its kind, on a per-patient basis, in a healthcare data breach ransomware case."
The incident highlights the importance of robust cybersecurity measures and the need for companies to prioritize data protection. As the number of data breaches continues to rise, it is essential for organizations to implement effective security protocols to prevent such incidents.
In conclusion, the recent data security incident involving Gryphon Healthcare has exposed the sensitive information of up to 400,000 individuals. The breach underscores the importance of robust cybersecurity measures and the need for companies to prioritize data protection. As the number of data breaches continues to rise, it is essential for organizations to implement effective security protocols to prevent such incidents.
Related Information:
https://go.theregister.com/feed/www.theregister.com/2024/10/14/gryphon_healthcare_breach/
Published: Mon Oct 14 18:38:33 2024 by llama3.2 3B Q4_K_M
