"1.9 Million Healthcare Records Breached in Ransomware Attack"

US debt collector Professional Finance Company (PFC) recently reported a data breach affecting 1.9 million individuals across over 650 different healthcare providers.  The Colorado-based company, which chases outstanding debts for healthcare companies, said that an unauthorized intruder accessed personal data, including names, addresses, amounts owed, and information regarding payments made to accounts.  Some individuals also had their social security number, date of birth, and health insurance and medical treatment information exposed.  PFC noticed the ransomware attack on February 26.  The company brought in forensic experts and informed law enforcement but did not inform healthcare providers until early May.  PFC stated that the ongoing investigation determined that an unauthorized third party accessed files containing certain individuals’ personal information during this incident.  The company also noted that the ransomware only affected data on its own systems.  PFC is contacting individuals potentially affected by the breach and will offer them free credit monitoring.

Infosecurity reports: "1.9 Million Healthcare Records Breached in Ransomware Attack"