US pharmaceutical company Sencora has reportedly notified data breach victims that their personal and sensitive medical information was stolen during a cyber attack. TechCrunch.
A letter was sent to affected individuals earlier this week. In the letter, Sencora said the data from its internal systems included patient names, birth dates and zip codes, as well as confidential information about diagnoses and medications.
“We take the privacy and protection of the information entrusted to us very seriously.”
The pharmaceutical giant said it gained access to critical patient information through its partnerships with drug companies, including those served by AbbVie, Acadia, Bayer, Novartis and Regeneron, according to the report.
Sencora has yet to release further details about the cyberattack, which allegedly began on Feb. 21. The developments were not made public until a week after the company filed a notice about the situation with government regulators.
TechCrunch reported that until 2023, the company known as AmerisourceBergen handled about 20% of all drugs sold in the US.
“Sencora and its affiliate, the Rush Group, partner with pharmaceutical companies, pharmacies and healthcare providers to facilitate access to prescribed therapies through drug distribution, free trial offers, co-pay coupons, patient support and services, and other services,” a related data breach notice from Novartis states. Bleeping Computer.
“We take very seriously the privacy and protection of the information entrusted to us. Cencora is writing to inform you of an event related to your personal information held by Cencora in connection with its patient support programs on behalf of Novartis Pharmaceuticals Corporation.”
Concorra spokesman Mike Iorfino declined to say whether the company knows exactly how many people were affected by the data breach, or how many people the company has notified.
The company reportedly said there was no current evidence that any information obtained in the hack was published online or used for fraudulent purposes.
However, the risk to infected individuals remains high.
Cencora is currently offering letter recipients two years of free identity protection and credit monitoring services through Experian, which recipients can accept until August 30, 2024.
The company has not disclosed how much it spends on cybersecurity.
Do you like Blaze News? Bypass censorship and subscribe to our newsletter to get stories like this delivered directly to your inbox. Sign up here!
