California network of health centers Omni Family Health is notifying close to 470,000 individuals that their personal information was stolen in a cyberattack earlier this year.
The data breach, Omni says, was discovered on August 7, after learning that threat actors had posted on the dark web data allegedly stolen from its network.
The leaked information, the healthcare provider says, pertains to current and former patients and employees. In total, 468,344 individuals were affected, Omni told the US Department of Health and Human Services.
In an incident notice on its website, Omni revealed that the names, addresses, dates of birth, Social Security numbers, and health insurance plan and medical information of current and former patients were likely compromised in the incident.
For current and former employees, the data breach impacted similar information, along with financial account details and information about dependents and beneficiaries.
“Although Omni is not aware of any claims that individuals have been victims of fraud as a result of this incident, we are encouraging individuals to take steps to protect their personal information,” the healthcare provider notes.
Omni is providing the affected individuals with 12 months of free credit monitoring and identity protection services.
While the organization did not specify the type of cyberattack it fell victim to, the Hunters International ransomware gang added Omni to its leak site on August 7, claiming the theft of 2.7 terabytes of data. On August 23, the group made all the allegedly stolen information publicly available.
Offering primary and preventative healthcare in the Kern, Kings, Tulare, and Fresno counties, Omni Family Health started sending data breach notification letters to the affected individuals over a week ago and submitted a sample copy to the California Attorney General’s Office.
Related: Hacker Conversations: Joe Grand – Mischiefmaker, Troublemaker, Teacher
Related: Some Data Is ‘Breached’ During a Hacking Attack on the Alabama Education Department
Related: Plex Confirms Database Breach, Data Theft
Related: Health Care Patient, Donor Data May Have Been Breached