Georgia-Based Firm NASCO Reports Major Health Data Hack Involving Progress Software’s MOVEit Software

In a significant cybersecurity incident, NASCO, a Georgia-based firm providing administrative services for health plans, has reported a major health data hack involving their use of Progress Software’s MOVEit file transfer software. The breach, which occurred about six months ago, is said to have impacted a significant number of individuals, including thousands of residents in Maine.

Scope of the Hack: Thousands Impacted

According to NASCO, nearly 805,000 individuals were affected by the hack, with 2,840 of them being residents of Maine. This staggering number highlights the severity and potential implications of the breach.

Incident Description: Acquiring Data from MOVEit software

On May 30th, NASCO experienced a data security breach in which a threat actor successfully acquired data from their MOVEit software. The firm acted swiftly by securing its systems, launching an investigation with a reputable cybersecurity firm, and promptly notifying law enforcement authorities.

Compromised Data: Personal Information at Risk

As a result of the breach, the personal information of health plan members was compromised. This included sensitive details such as names, Social Security numbers, and various identifiers. The exposure of this information can have severe consequences for the affected individuals, potentially leading to identity theft and other fraudulent activities.

Immediate Response and Actions Taken

Upon discovering the breach, NASCO took immediate action to mitigate the damage. The affected MOVEit server has been decommissioned, making it inaccessible from the internet. Furthermore, the company made the decision to discontinue its use of MOVEit, ensuring that similar incidents do not occur in the future. Simultaneously, NASCO engaged a cybersecurity firm to conduct a thorough investigation, helping to identify the vulnerabilities that allowed the breach to take place. Law enforcement was also notified to aid in the investigation and potential prosecution of the perpetrators.

Support for affected individuals

Understanding the potential distress and stress caused by the breach, NASCO has gone above and beyond to support the affected individuals. The firm has implemented additional security procedures to strengthen its IT system environments, reducing the likelihood of future breaches. In an effort to minimize the impact on the affected individuals, NASCO is providing 24 months of complimentary identity and credit monitoring services. This goes a long way in helping them detect and address any suspicious activities related to their compromised data.

Ongoing issue with MOVEit hacks

Unfortunately, NASCO is not the first company to fall victim to a MOVEit hack. The firm now joins a growing list of organizations, including third-party vendors serving the healthcare sector, that have experienced similar incidents. The recurring nature of these hacks highlights the urgent need for robust security measures and heightened vigilance within the healthcare industry.

Recent MOVEit Incidents: An Alarming Trend

In recent times, there have been notable instances of MOVEit breaches. Radius Global Solutions reported a hack affecting nearly 136,000 individuals, whereas Arietis Health dealt with a breach impacting 55 medical providers and nearly two million individuals. These incidents have collectively affected millions of individuals worldwide, with the largest reported hack involving the U.S. government contractor Maximus, which impacted a staggering 11 million individuals.

The health data hack involving NASCO and Progress Software’s MOVEit software serves as a reminder of the ever-present cybersecurity threats faced by organizations, particularly those in the healthcare sector. As the number of incidents continues to rise, it is imperative that companies remain proactive in implementing robust security measures and promptly address any vulnerabilities. Additionally, governments and industry stakeholders must collaborate to establish more rigorous regulations and standards to safeguard sensitive personal information, thereby mitigating the risk of large-scale data breaches.

Explore more

Can Stablecoins Balance Privacy and Crime Prevention?

The emergence of stablecoins in the cryptocurrency landscape has introduced a crucial dilemma between safeguarding user privacy and mitigating financial crime. Recent incidents involving Tether’s ability to freeze funds linked to illicit activities underscore the tension between these objectives. Amid these complexities, stablecoins continue to attract attention as both reliable transactional instruments and potential tools for crime prevention, prompting a

AI-Driven Payment Routing – Review

In a world where every business transaction relies heavily on speed and accuracy, AI-driven payment routing emerges as a groundbreaking solution. Designed to amplify global payment authorization rates, this technology optimizes transaction conversions and minimizes costs, catalyzing new dynamics in digital finance. By harnessing the prowess of artificial intelligence, the model leverages advanced analytics to choose the best acquirer paths,

How Are AI Agents Revolutionizing SME Finance Solutions?

Can AI agents reshape the financial landscape for small and medium-sized enterprises (SMEs) in such a short time that it seems almost overnight? Recent advancements suggest this is not just a possibility but a burgeoning reality. According to the latest reports, AI adoption in financial services has increased by 60% in recent years, highlighting a rapid transformation. Imagine an SME

Trend Analysis: Artificial Emotional Intelligence in CX

In the rapidly evolving landscape of customer engagement, one of the most groundbreaking innovations is artificial emotional intelligence (AEI), a subset of artificial intelligence (AI) designed to perceive and engage with human emotions. As businesses strive to deliver highly personalized and emotionally resonant experiences, the adoption of AEI transforms the customer service landscape, offering new opportunities for connection and differentiation.

Will Telemetry Data Boost Windows 11 Performance?

The Telemetry Question: Could It Be the Answer to PC Performance Woes? If your Windows 11 has left you questioning its performance, you’re not alone. Many users are somewhat disappointed by computers not performing as expected, leading to frustrations that linger even after upgrading from Windows 10. One proposed solution is Microsoft’s initiative to leverage telemetry data, an approach that