National pharmacy network PharMerica has notified over 5.8 million individuals of a data breach that occurred in March, after an unauthorized party accessed its computer systems. PharMerica operates more than 2,500 facilities in the US and offers more than 3,100 pharmacy and healthcare programs.
The compromised personal information includes names, addresses, birth dates, Social Security numbers, health insurance, and medication information. The ransomware group Money Message is believed to be responsible for the incident.
In April, the group began leaking personally identifiable information and protected health information allegedly stolen from PharMerica.
Last month, the ransomware operators told DataBreaches.net that they encrypted almost the entire PharMerica infrastructure and that they had engaged in negotiations with the company. PharMerica’s letter does not provide details on the type of cyberattack that it suffered.
PharMerica encourages executors or surviving spouses to contact the national credit reporting agencies to notify them of the situation if the compromised information belongs to a deceased individual.
The incident highlights the importance of having robust cybersecurity measures in place to prevent unauthorized access to personal information and prevent data breaches from happening. It also underscores the need for companies to have a plan in place to respond to a data breach quickly and effectively.
