Parathon by JDA e-Health: what we still don't know about their July ransomware incident

On July 27, 2023, Parathon detected that it was the target of a cybersecurity attack. An unauthorized third party attempted to infiltrate Parathon's computer network and demand a ransom payment. As a result of the incident, Parathon determined that the following personal information could have been accessed by an unauthorized third party: name, address, date of birth, and/or protected health information. The types of information affected were different for each individual, and not every individual had all of the above-list elements exposed. Importantly, the potentially exposed information does not include passwords, financial account information such as bank account numbers or credit card numbers, or social security numbers. While the investigation found no evidence that any information has been specifically misused to date, Parathon today is mailing letters to potentially involved individuals with detail about the incident and providing resources they can use to help protect their information. Parathon is also offering potentially involved individuals access to free credit monitoring and identity theft protection services through Cyberscout, a leading identity protection company.

On July 27, 2023, Parathon experienced a cybersecurity attack where an unauthorized third party attempted to infiltrate the company's computer network and demanded a ransom payment. The breach potentially exposed personal information such as name, address, date of birth, and protected health information. However, no evidence of specific misuse has been found to date. Affected individuals are being notified and offered free credit monitoring and identity theft protection services through Cyberscout.