Incident Details
A & A Services, dba Sav-Rx, is alerting 2.8 million individuals about a data breach in October 2023, exposing health information after an unauthorized access to non-clinical systems.
Incident
How Did the Breach Happen?
An unauthorized third party gained entry to certain non-clinical systems, accessing health information files.
What Data has been Compromised?
Protected health information including Social Security numbers may have been accessed.
Why Did the company's Security Measures Fail?
Weakness in safeguarding non-clinical systems allowed the unauthorized access to occur and persist.
What Immediate Impact Did the Breach Have on the company?
Sav-Rx notified 2.8 million patients, launched an investigation, and offered credit monitoring and identity theft restoration services.
How could this have been prevented?
Enhanced security protocols for non-clinical systems, regular security audits, and more robust access controls could have prevented this breach.
What have we learned from this data breach?
The importance of robust cybersecurity measures for all systems handling sensitive data. Prompt detection and notification are crucial in such incidents.
Summary of Coverage
Sav-Rx's breach of 2.8 million patients' data in October 2023, due to unauthorized access to non-clinical systems, highlights the critical need for stringent cybersecurity measures.