Hackers Steal Personal Data of 5.4 Million in Major Healthcare Breach
Hackers are still targeting companies in the healthcare sector, and a recent cyberattack has left millions of people vulnerable. The medical billing company Episource experienced a major data breach earlier this year, and it is now notifying around 5.4 million Americans by mail that hackers exposed their sensitive information.
The breach happened between January 27 and February 6, and hackers were able to break into Episource’s systems and steal personal and medical records. While the company isn’t widely known, it provides services like medical coding, risk analysis, and healthcare data support for hospitals and clinics. Because of the type of work it does, Episource stores a lot of personal health information, which makes it an attractive target for cybercriminals.
According to a report by BleepingComputer, and later confirmed in filings with government agencies, the stolen data includes:
- Full names
- Home addresses
- Email addresses
- Phone numbers
- Date of birth
- Medical record information
- Insurance and Medicaid details
- Social Security numbers
Luckily, no bank account or credit card data was leaked in this breach.
Episource began sending notification letters to affected individuals in April, and it has continued sending more after California and Vermont filed additional reports. Authorities now report that the breach has affected 5,418,886 people.
What You Should Do if Affected
If Episource exposed your data, it will send you a notification letter in your mailbox — not by email. That letter will explain what information was leaked and guide you on how to enroll in free credit monitoring and identity protection services from IDX.
With Social Security numbers and medical information stolen, people are at risk of identity theft and fraud. Hackers could use this data to apply for loans, file false claims, or send convincing phishing emails.
To protect yourself:
- Sign up for the free identity protection service if you’re notified.
- Freeze your credit to stop anyone from opening new accounts in your name.
- Avoid clicking on unknown links in messages or emails.
- Watch your accounts for any suspicious activity.
Take Extra Precautions
As attacks on healthcare companies continue, everyone should improve their digital security. Make sure you:
- Use strong, unique passwords for your accounts
- Install and update reliable antivirus software
- Stay cautious when giving out personal information
With cyberattacks becoming more common, taking steps to protect your information is more important than ever — especially when it comes to your health and identity.
