A recent security incident involving Ohio-based CareSource may have exposed the protected health information of certain Indiana Medicaid patients.
More than 200,000 Hoosiers' personal information was compromised by CareSource, a managed care organisation, in late May, according to representatives of the Indiana Family and Social Services Administration.
The compromised imformation includes, addresses, Social Security numbers, dates of birth, member health information and more for 212,193 Indiana Medicaid members were accessed through an application called MOVEit, used by CareSource.
Source: https://www.databreaches.net/indiana-notifying-medicaid-recipients-of-caresource-security-breach/
TPRM report: https://scoringcyber.rankiteo.com/company/meridian-of-illinois
"id": "mer194923",
"linkid": "meridian-of-illinois",
"type": "Data Leak",
"date": "09/2023",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 212193,
'industry': 'Healthcare',
'location': 'Ohio',
'name': 'CareSource',
'type': 'Managed Care Organization'}],
'attack_vector': 'Exploitation of MOVEit Application',
'data_breach': {'number_of_records_exposed': 212193,
'personally_identifiable_information': ['addresses',
'Social Security '
'numbers',
'dates of birth'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information',
'Health Information']},
'date_detected': 'May 2023',
'description': 'A recent security incident involving Ohio-based CareSource '
'may have exposed the protected health information of certain '
'Indiana Medicaid patients.',
'impact': {'data_compromised': ['addresses',
'Social Security numbers',
'dates of birth',
'member health information'],
'systems_affected': ['MOVEit Application']},
'references': [{'source': 'Indiana Family and Social Services '
'Administration'}],
'title': 'CareSource Data Breach',
'type': 'Data Breach'}