Medical technology developer Zoll Medical is notifying roughly one million individuals that their personal information might have been compromised in a recent data breach.
Zoll develops and markets medical equipment and software for advanced emergency care, including cardiac monitoring, oxygen therapy, ventilation, data management, and more.
The data breach, the company says, was identified at the end of January, when it discovered unusual activity on its internal network.
“We determined that your information may have been affected on or about February 2, 2023. Our investigation into the incident is ongoing,” Zoll wrote in a notification letter, a copy of which was submitted to the Maine Attorney General’s office.
According to Zoll, the compromised information included names, addresses, birth dates, and Social Security numbers.
“It may also be inferred that you used or were considered for use of a Zoll product,” the company also says.
Zoll says it has no indication that the exposed information was misused. However, it is not uncommon for cybercriminals to share or trade stolen personal information on underground forums, and then use it in attacks such as phishing, identity theft, and the like.
The company informed the Maine Attorney General’s office that just over one million individuals were impacted by the breach, all of whom have been offered free identity protection services.
It’s unclear what type of cyberattack Zoll fell victim to and whether ransomware was deployed on its systems.
Related: Patient Information Compromised in Data Breach at San Diego Healthcare Provider
Related: 3.3 Million Impacted by Ransomware Attack at California Healthcare Provider
Related: Vulnerabilities in OpenEMR Healthcare Software Expose Patient Data