Tennessee-based Numotion, which advertises itself as the largest provider of wheelchairs and other mobility solutions in the United States, has suffered a data breach impacting nearly 500,000 people.
According to a data security notice posted on its website, Numotion (United Seating and Mobility) learned recently that some of its employees’ email accounts were hacked into on several occasions between September 2, 2024, and November 18, 2024.
An investigation was launched and the company determined on January 22 that some of the emails in the compromised accounts contained customer information, including name, date of birth, product information, payment and financial account information, medical information, health insurance details and — for a minority of affected individuals — SSNs and driver’s license numbers.
“To date, we have no reason to believe that any personal information has been misused for the purpose of committing fraud or identity theft, but as a precautionary measure, individuals should remain vigilant to protect against potential fraud and/or identity theft by, among other things, reviewing their account statements and monitoring credit reports closely,” Numotion said.
The company told the US Department of Health and Human Services (HHS) that the incident affects more than 494,000 people.
According to its website, Numotion serves more than 400,000 people, which suggests that the incident impacts all of its customers.
This is not the only significant cybersecurity incident suffered by Numotion in the past year. In the spring of 2024, the company informed customers that hackers had access to its network between February 29 and March 2, stealing information and encrypting files.
The Black Basta ransomware group took credit for that attack.
Numotion initially said only a few thousand people were impacted by the breach, but later told the HHS that more than 600,000 individuals were affected.
Related: 2024 US Healthcare Data Breaches: 720 Incidents, 186 Million Compromised User Records
Related: 560,000 People Impacted Across Four Healthcare Data Breaches
Related: Orthanc Server Vulnerability Poses Risk to Medical Data, Healthcare Operations
