The list of MOVEit victims has continued to grow and can now be added to it by the healthcare provider Welltok.
TechCrunch discovered that the company began sending breach notifications to affected customers after filing a breach notification with the Maine Attorney General, explaining how, despite an initial investigation showing no evidence of compromise, a second analysis determined unauthorized access enabled via the MOVEit vulnerability.
Welltok also posted an announcement on its website, in which it claimed that hackers had stolen Social Security numbers (SSN), Medicare and Medicaid ID numbers and, for some patients, health insurance data, as well as names, dates of birth, mailing addresses, and health care information. , with around 1.6 million people believed to have been affected in total.
The incident affected group health plans at Stanford Health Care, Lucile Packard Children’s Hospital Stanford, Stanford Health Care Tri-Valley, Stanford Medicine Partners and Packard Children’s Health Alliance, the statement said. Company.
TechCrunch also thinks Welltok may not have listed all affected customers. Corewell Health, Sutter Health, and St. Bernards all recently confirmed data breaches, and apparently all three used Welltok for patient communication.
The company, acquired by Virgin Pulse in November 2021, is a patient engagement company that encourages users to interact with their healthcare providers through text, email, social media, and more.
In late May 2023, cybersecurity researchers determined that MOVEit, a well-known managed file transfer product, had a major security flaw that allowed hackers to steal sensitive data.
MOVEit has been used by many organizations around the world, including SMBs and large enterprises, and more recent estimates show that more than 2,500 companies may have been affected by this flaw. More than 60 million people had their sensitive data stolen during this attack, the consequences of which are still being discovered today.