Heimdal
Home > Cybersecurity News

Sav-Rx Data Breach Exposes Sensitive Information of Over 2.8 Million People

The Company Did Not Reveal Whether the Attackers Used File-encryption.

Last updated on May 29, 2024

article featured image

Contents:

Threat actors got access to sensitive information belonging to 2,812,336 people due to the Sav-Rx data breach.

The prescriptions management company discovered the data leakage on October 8th, 2023, five days after the attackers had breached their system. It was a network disruption that raised awareness.

While they didn`t reveal how the hackers gained initial access, the company said that the attack only impacted non-clinical systems.

Sav-Rx data breach risks

The investigation ended on April 30 and the attackers got access to files related to Sav-Rx’s medication benefits management services platform.

The incident did not affect our pharmacy systems, including those systems related to our mail order pharmacy. Not all customers were impacted, and not all health plan participants were impacted.

said Sav-Rx’s representatives.

However, the impact of the Sav-Rx data breach is considerable. The attack compromised personal identifiable information (PII) belonging to almost 3 million people:

  • name
  • address
  • eligibility data
  • insurance identification number
  • Social Security number

This is enough data for the hackers to use in phishing campaigns, social engineering, and identity fraud.

Sav-Rx announced the affected persons regarding the possible impact of the incident. The company offers each of the victims two years of free credit monitoring and identity theft restoration services.

Data breach prevention measures

Following the investigation, Sav-Rx announced they have strengthened their cyber security posture. Some of the mitigation measures they said they have enhanced are:

  • creating a 24/7 security operations center
  • multi-factor authentication
  • patching cycle implementation
  • network segmentation
  • enhanced geo-blocking

To avoid future data loss or ransomware attacks I would also recommend:

  • using a DNS filtering solution, to block potential malicious communication to C2 servers
  • using end-to-end encryption to protect sensitive data

If you liked this article, follow us on LinkedIn, Twitter, Facebook, and Youtube, for more cybersecurity news and topics.

Author Profile

Livia Gyongyoși

Communications and PR Officer

Livia Gyongyoși is a Communications and PR Officer within Heimdal®, passionate about cybersecurity. Always interested in being up to date with the latest news regarding this domain, Livia's goal is to keep others informed about best practices and solutions that help avoid cyberattacks.

Related Articles

What is SOC? Security Operations CenterWhat Is Multi-Factor Authentication (MFA)?What Is DNS Filtering and Why Does Your Business Need It?What Is Data Leakage?What Is Data Loss Prevention and How You Can Approach DLP SecurityWhat Is Social Engineering?What Is a Data Breach and How to Prevent ItEnd-to-end Encryption (E2EE). What Is It and How It HelpsPhishing attacks explained: How it works, Types, Prevention and Statistics

Leave a Reply

Your email address will not be published. Required fields are marked *

CHECK OUR SUITE OF 11 CYBERSECURITY SOLUTIONS

SEE MORE
linkedin
youtube
facebook
x

resources

company

newsletter

© 2024 Heimdal®

Vat No. 35802495, Vester Farimagsgade 1, 2 Sal, 1606 København V