"Breach Connected to MOVEit Flaw Affects Missouri Medicaid Recipients"

The Missouri Department of Social Services (DSS) recently issued an alert urging residents to safeguard their personal information following a cyberattack originating from a data security breach at IBM Consulting in May 2023.  DSS stated that this breach potentially exposed the identities of numerous Medicaid participants.  DSS, responsible for administering Medicaid services in the state, disclosed details surrounding the incident in a press release published on Tuesday.  The breach centered around a vulnerability discovered in Progress Software’s MOVEit Transfer software, a third-party application used by IBM.  While DSS systems remained unaffected, data belonging to the agency was compromised.  Upon notification of the breach, IBM halted the use of the software for investigation and applied necessary fixes.  On June 13, 2023, IBM informed DSS that unauthorized access to files within the MOVEit application had occurred, potentially including Medicaid participants’ protected health information.

Infosecurity reports: "Breach Connected to MOVEit Flaw Affects Missouri Medicaid Recipients"