Top Class Actions’s website and social media posts use affiliate links. If you make a purchase using such links, we may receive a commission, but it will not result in any additional charges to you. Please review our Affiliate Link Disclosure for more information.
MOVEit data breach overview:
- Who: The Department of Health and Human Services and the Centers for Medicare and Medicaid Services have announced a data breach that could have affected 612,000 current Medicare beneficiaries.
- Why: The MOVEit data breach involved Medicare beneficiaries’ personally identifiable information and/or protected health information.
- Where: The Medicare data breach was announced by the organizations’ headquarters in Washington, D.C.
- What are my options: Those received a data breach letter in connection with the MOVEit cyberattack may qualify to participate in a free class action lawsuit investigation.
Approximately 612,000 Medicare beneficiaries could have had their personal information compromised in a data breach from vendor MOVEit, according to a release from the Department of Health and Human Services and the Centers for Medicare and Medicaid Services (CMS).
The data breach occurred across government and public data on MOVEit, a product of Maximus Federal Services, in late May. Maximus detected unusual activity on MOVEit on May 30 and began to investigate and stopped services on MOVEit on May 30.
“Progress Software Corporation, announced that a vulnerability in its MOVEit software had allowed an unauthorized party to gain access to files across many organizations in both the government and private sectors,” the release said.
CMS was informed of the data breach June 2 and found out no CMS systems were compromised but that an unauthorized party gained access to files on the MOVEit system.
The Medicare data breach included name, Social Security numbers, date of birth, telephone numbers, mailing addresses, driver’s license and state identification numbers, medical history/notes and health care provider, prescription information, health insurance information and claims and health benefits and enrollment information.
Medicare data breach victims eligible for 24 months of free Experian credit monitoring, CMS says
After learning of the Medicare data breach, Maximus took the MOVEit application offline, notified law enforcement and began an investigation into what happened. CMS is continuing the investigation along with Maximus.
People affected by the data breach will have access to a complimentary 24 months of credit monitoring from Experian at no cost. Those affected can call Medicare at 1-800-MEDICARE (1-800-633-4227) with any general questions or concerns.
A letter was sent to those identified as being affected by the Medicare data breach and those whose Medicare Beneficiary Identifier number was affected can receive a new Medicare card with a new number.
Colorado State University recently disclosed it was also affected by the recent cyberattack on the MOVEit Transfer system that allowed unauthorized access to personal information of some on the university’s campus community.
Was your data compromised in the MOVEit data breach? Let us know in the comments.
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements:
49 thoughts onMOVEit Medicare data breach exposes data of 600K+
Add me
Me and my husband just received data brieach letters from Maximus about moveit data breach from family of social service please add me and my husband
I did receive a letter notifying me that my personal information had been included in the breach and I was offered the 2 year of credit monitoring. I haven’t accepted that offer yet because that action doesn’t prevent identity theft, it just alerts me in the event that something suspicious shows up. I am extremely concerned about this situation and feel that 2 years of credit monitoring is not sufficient to prevent future harm to my identity, my credit and my financial accounts. If a class action is filed, I would indeed like to be included and I will be following up on this matter. Something else needs to be done, someone has all of my personal information.
My mother and I both received letters our information was affected (me being the beneficiary).
I did receive a letter informing me that my personal information had been included in the breach and I was offered the 2 year of credit monitoring, which I accepted and registered for. However, that action does NOT prevent identity theft, it just alerts me in the event that something suspicious shows up. I am very concerned about this situation and feel that 2 years of credit monitoring is not sufficient to prevent future harm to my identity, my credit and my financial accounts. If a class action is filed, I would indeed like to be included and I will be following this matter for any developments.
Please add me
Add me
Add me pls
Please add me
Add me please
Please add me