Connect with us

Hi, what are you looking for?


Data Breaches

ESO Solutions Data Breach Impacts 2.7 Million Individuals

ESO Solutions is informing 2.7 million individuals of a data breach impacting their personal and health information.

ESO Solutions has started notifying 2.7 million individuals that their personal and health information was compromised in a ransomware attack.

The incident occurred on September 28 and forced the company, a data and software provider for emergency responders, hospitals, and state and federal agencies, to take systems offline to contain it.

The attackers, the company says in an incident notice on its website, accessed and encrypted some of its internal systems, which it was able to safely restore using backups.

“Our investigation determined that the unauthorized third party may have acquired your personal data during this incident. Please know that we have taken all reasonable steps to prevent the data from being further published or distributed, and have notified and are working with federal law enforcement to investigate,” the incident notice reads.

One of the compromised systems, ESO Solutions says, contained patient information, including names, addresses, phone numbers, and other sensitive personal information and protected health information.

In the notification letter sent to the impacted individuals, a copy of which was submitted to the Maine Attorney General’s Office, ESO explains that dates of birth, injury type and date, medical treatment information, patient account and/or medical record number, insurance and payer information, and Social Security numbers might have been exposed in some cases.

SecurityWeek has not seen any ransomware gang taking credit for the attack and ESO does not say whether it paid out a ransom to the attackers. However, the company’s statement that it has “secured the deletion of all impacted data and taken all reasonable steps to prevent the data from being further published or distributed” suggests that it did.

ESO told the Maine AGO that 2.7 million individuals were impacted by the data breach and that it started mailing out letters to them on December 12.

Advertisement. Scroll to continue reading.

Of the 2.7 million affected, more than 9,500 were Tallahassee Memorial HealthCare (TMH) patients, the information of which was stored by ESO to facilitate the provision of services to the not-for-profit community healthcare organization.

“ESO is a valued partner and has coordinated with TMH to begin providing notice to all patients for whom there are verifiable mailing addresses and resources so potentially impacted individuals can protect themselves,” TMH says in an incident notification.

Other hospitals and healthcare providers, including Ascension Providence and Manatee Memorial Hospital, are also notifying their patients of the incident.

According to ESO, the attack also impacted patients at Mississippi Baptist Medical Center, Merit Health Biloxi, Merit Health River Oaks, ESO EMS Agency, Forrest General Hospital, Alaska Regional Hospital, Memorial Hospital at Gulfport, Providence Kodiak Island Medical Center, Providence Alaska Medical Center, and Desert View Hospital.

Related: Mr. Cooper Data Breach Impacts 14.7 Million Individuals

Related: Delta Dental Says Data Breach Exposed 7 Million Customers

Related: Personal Information of 45,000 Individuals Stolen in Idaho National Laboratory Data Breach

Written By

Ionut Arghire is an international correspondent for SecurityWeek.


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Gain valuable insights from industry professionals who will help guide you through the intricacies of industrial cybersecurity.


Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.


Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Data Breaches

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


A SaaS ransomware attack against a company’s Sharepoint Online was done without using a compromised endpoint.

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

CISO Strategy

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.


Several major organizations are confirming impact from the latest zero-day exploits hitting Fortra's GoAnywhere software.