Data breach at medical services provider exposes archived personal info. Urgent need for enhanced data security measures highlighted. (Getty Images)
Security experts emphasize the crucial need to safeguard archived sensitive data, underscoring its significance comparable to protecting real-time transactional information against breaches and unauthorized access.
Illustrating this imperative is the recent incident involving Transformative Healthcare, a U.S.-based medical services provider, which found itself obligated to inform slightly over 911,000 individuals by the end of December about a security breach. This breach involved the unauthorized access and copying of certain personal information stored within archived records belonging to Fallon Ambulance Services, a defunct division previously acquired by Transformative Healthcare.
The acquisition of Fallon, operating primarily in Massachusetts, occurred in 2018, but the company ceased its operations in 2022. Legal obligations compelled the parent company to retain archived copies of Fallon's records within its computer systems.
According to a regulatory filing submitted to Maine’s attorney general’s office, suspicious activity within the Fallon archive was flagged in April. Upon investigation, it was discovered that a hacker had gained access to the data in February. The company spent seven months determining the scope of the breach and identifying the number of individuals potentially impacted by the compromise.
The compromised data might have encompassed various sensitive details such as individuals’ names, addresses, Social Security numbers, medical records (inclusive of COVID-19 testing or vaccination information), as well as data submitted to Fallon regarding employment or employment applications.
The incident sheds light on the deliberate targeting of an organization's data archives by attackers. As highlighted in a blog post by researchers at Proofpoint, attackers may specifically aim for archives due to the wealth of valuable information they contain, including intellectual property, internal communications, and financial data. These archives serve as prime targets for attackers who manage to obtain access to high-privilege network accounts or exploit vulnerabilities enabling entry into archive data.
The revelation underscores the critical need for robust security measures not only in protecting active data but also in safeguarding archived information. The breach faced by Transformative Healthcare serves as a cautionary tale, emphasizing the importance of continuous vigilance and proactive measures to fortify data security against evolving cyber threats.
