On August 14, 2023, the Maine Office of the Attorney General reported a data breach involving VNS Health Health Plans. The breach occurred between May 30 and June 2, 2023, due to unauthorized access to the MOVEit Secure File Transfer server managed by the vendor TMG Health, Inc. Approximately 103,775 individuals were affected, and compromised data included Social Security numbers. Identity theft protection services for one year were offered to those affected.
TPRM report: https://www.rankiteo.com/company/vns-health
"id": "vns257072925",
"linkid": "vns-health",
"type": "Breach",
"date": "5/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 103775,
'industry': 'Healthcare',
'name': 'VNS Health Health Plans',
'type': 'Healthcare'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'number_of_records_exposed': 103775,
'personally_identifiable_information': 'Social Security '
'numbers',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Social Security numbers'},
'date_detected': '2023-08-14',
'date_publicly_disclosed': '2023-08-14',
'description': 'Unauthorized access to the MOVEit Secure File Transfer server '
'managed by the vendor TMG Health, Inc., affecting '
'approximately 103,775 individuals and compromising Social '
'Security numbers.',
'impact': {'data_compromised': ['Social Security numbers'],
'identity_theft_risk': 'High',
'systems_affected': ['MOVEit Secure File Transfer server']},
'references': [{'date_accessed': '2023-08-14',
'source': 'Maine Office of the Attorney General'}],
'title': 'Data Breach at VNS Health Health Plans',
'type': 'Data Breach',
'vulnerability_exploited': 'MOVEit Secure File Transfer server'}