Vulnerability cyber

Wisconsin Physicians Service Insurance Corporation (WPS)

Apr 7, 2025 1 min read
Wisconsin Physicians Service Insurance Corporation (WPS)

WPS, in connection with its Medicare administrative services, reported a security breach due to a vulnerability in the MOVEit software provided by Progress Software. This incident potentially compromised the protected health information (PHI) of 946,801 Medicare beneficiaries, including data essential for managing Medicare claims and supporting CMS audits. Unauthorized access occurred between May 27 and May 31, 2023, was discovered later, and notifications to affected individuals commenced following the breach acknowledgment.

Source: https://www.hcinnovationgroup.com/cybersecurity/data-breaches/news/55138546/cms-notifies-people-potentially-impacted-by-data-breach

TPRM report: https://scoringcyber.rankiteo.com/company/wps-health-insurance

"id": "wps001040725",
"linkid": "wps-health-insurance",
"type": "Vulnerability",
"date": "9/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 946801,
                        'industry': 'Healthcare',
                        'name': 'WPS',
                        'type': 'Organization'}],
 'attack_vector': 'Software Vulnerability',
 'data_breach': {'number_of_records_exposed': 946801,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Protected Health Information '
                                              '(PHI)',
                                              'Medicare claims data',
                                              'CMS audit data']},
 'description': 'WPS, in connection with its Medicare administrative services, '
                'reported a security breach due to a vulnerability in the '
                'MOVEit software provided by Progress Software. This incident '
                'potentially compromised the protected health information '
                '(PHI) of 946,801 Medicare beneficiaries, including data '
                'essential for managing Medicare claims and supporting CMS '
                'audits. Unauthorized access occurred between May 27 and May '
                '31, 2023, was discovered later, and notifications to affected '
                'individuals commenced following the breach acknowledgment.',
 'impact': {'data_compromised': ['Protected Health Information (PHI)',
                                 'Medicare claims data',
                                 'CMS audit data'],
            'systems_affected': ['MOVEit software']},
 'response': {'communication_strategy': ['Notifications to affected '
                                         'individuals']},
 'title': 'WPS Medicare Administrative Services Security Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'MOVEit software vulnerability'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.