Sav-Rx Data Breach Exposes Personal Information of 2.8 Million Individuals
Prescription service firm Sav-Rx recently revealed a data breach that has affected more than 2.8 million individuals across the United States. The breach, which occurred in 2023, was a result of a cyberattack that compromised sensitive data of the company’s customers.
According to reports, A&A Services, operating as Sav-RX, informed the Maine Attorney General’s office about the breach and initiated the process of notifying the impacted individuals. The investigation conducted by the company, alongside cybersecurity experts, traced the unauthorized access back to October 3, 2023.
The breach exposed personal information such as full names, dates of birth, Social Security Numbers, email addresses, physical addresses, phone numbers, eligibility data, and insurance identification numbers of the affected individuals. Sav-Rx took eight months to notify the impacted individuals to ensure minimal disruption to patient care during the investigation.
Despite the breach, Sav-Rx assured that its pharmacy systems, including the mail order pharmacy, remained unaffected, and not all customers or health plan participants were impacted. The company promptly engaged law enforcement authorities and cybersecurity experts to contain the incident and prevent further dissemination of stolen data.
In response to the breach, Sav-Rx has implemented enhanced security measures and is offering impacted individuals complimentary access to 24 months of credit monitoring and identity theft restoration services provided by Equifax. The company emphasized that its IT systems were restored promptly, and there were no delays in the shipment of prescriptions during the breach period.
The incident serves as a reminder of the increasing threats posed by cyberattacks and the importance of robust cybersecurity measures in safeguarding sensitive data. Sav-Rx’s proactive approach in addressing the breach and providing support to affected individuals reflects its commitment to protecting customer information and maintaining trust in its services.
As the company continues to strengthen its security protocols and enhance training for employees, it remains vigilant in monitoring and mitigating potential risks to prevent future breaches and uphold the security of its customers’ data.