- Group for healthcare suffered a cyberattack at the end of September 2024
- The attackers stole sensitive data on more than 600,000 people
- The company offers free monitoring of identity theft
Healthcare Services Group (HSGI), a provider of health support services, suffered a cyberattack where it lost sensitive data on more than 600,000 people.
In a notification of data violation, the company said it discovered the penetration on October 7, 2024, and after examining the incident, it was learned, “certain files” were stolen between September 27 and October 3rd.
In total, more than 624,000 people got their data stolen, which includes full names, Social Security Numbers (SSN), driver’s license numbers, state identification numbers, financial account information and account access information.
Pending abuse
The stolen data are extremely sensitive and can be utilized in several ways. With names, SSNs and driver’s license numbers, they can commit all kinds of identity theft, from opening bank accounts, to taking loans or even filing fake tax returns.
Information on Financial Account and Login Legitimation Information allows attackers to steal money directly or access other online accounts if passwords are reused. With personal details, criminals can carry out sophisticated phishing attacks or social engineering schemes that fool victims to reveal even more information or emulate them for false purposes.
According to CyberinsidesViolations such as this “can lead to downstream privacy risks or observations under HIPAA and other frameworks,” as well.
None of this seems to happen right now, as HSGI says there is no evidence that the data is abused in nature – but that does not mean it will not happen and all victims are offered free protection services for identity services for either 12 or 24 months, depending on the combination of data stolen.
Meanwhile, the victims should be extra careful with incoming E -mail messages or other forms of communication, especially those who claim to come from HSGI. E emails carrying attachments, or a feeling of urgent nature, should be specially investigated as this is likely to be fraudulent.
