Security Experts:

Connect with us

Hi, what are you looking for?



MRIoA Discloses Data Breach Affecting 134,000 People

Medical Review Institute of America (MRIoA) on Friday started notifying some individuals that their personal information was compromised in a cyberattack.

Medical Review Institute of America (MRIoA) on Friday started notifying some individuals that their personal information was compromised in a cyberattack.

The incident, MRIoA says, was discovered on November 9, 2021. A couple of days later, the organization discovered that personal information was compromised in the attack and, by November 16, it had managed to retrieve it.

The investigation into the incident has revealed the theft of protected health information such as names, gender, physical and email addresses, phone numbers, birth dates, Social Security numbers, full clinical information (including diagnosis, treatment, medical history, and lab test results), and financial information (such as health insurance policy and group plan number).

MRIoA says it has taken steps to strengthen its security. It has implemented additional multifactor authentication protections, replaced its servers with new ones and deployed a hardened backup environment, revised its cybersecurity policies, and enhanced employee training.

In a data breach notification submitted to the Maine Attorney General’s Office, MRIoA said that over 134,000 individuals were impacted by the incident.

The organization has not shared any information on the type of cyberattack it fell victim to. However, it did say that, immediately after the incident, it “took steps to secure and safely restore its systems and operations,” which suggests that ransomware might have been involved.

Furthermore, the organization said it “retrieved and subsequently confirmed the deletion of” the stolen data, which suggests that MRIoA contacted the attackers and negotiated with them.

SecurityWeek has emailed MRIoA to confirm that ransomware was indeed involved in the incident and to ask whether a ransom was paid, but has yet to receive a response.

Related: Online Pharmacy Service Ravkoo Discloses Data Breach

Related: Broward Health Data Breach Impacts 1.3 Million People

Related: Saltzer Health Says Patient Data Exposed in Cyberattack

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.


No one combatting cybercrime knows everything, but everyone in the battle has some intelligence to contribute to the larger knowledge base.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...