Nebraska-based healthcare insurance firm Regional Care has disclosed a data breach impacting more than 225,000 individuals.
The third-party insurance administrator is informing impacted individuals that their personal and medical information may have been compromised as a result of an incident identified in mid-September 2024.
Regional Care discovered at the time that there had been some unusual activity on an account in its network. The compromised account was immediately shut down.
An investigation conducted with the aid of cybersecurity experts determined that an “unauthorized party” had potentially acquired some files from its systems.
The company determined on November 8 that some of the compromised files contained sensitive personal information, including names, dates of birth, Social Security numbers, medical information, and health insurance information.
Individuals whose Social Security numbers have been exposed are being offered free credit monitoring services.
Regional Care informed the Maine Attorney’s General Office that the incident affects more than 225,000 individuals.
The insurance firm has not shared any other information about the intrusion. SecurityWeek has not seen any known ransomware group taking credit for an attack on Regional Care.
Related: Other Healthcare Data Breaches Covered by SecurityWeek
Related: 446,000 Impacted by Center for Vein Restoration Data Breach
Related: Anna Jaques Hospital Data Breach Impacts 316,000 People
Related: 900,000 People Impacted by ConnectOnCall Data Breach
