Augusta Fire Rescue impacted by third party supplier MOVEit related data breach

Augusta Maine Fire Rescue's EMS billing company has faced a data breach incident, with the organization revealing that the breach impacted certain patient information. The breach occurred at the systems of EMS Management Consultants, a billing company providing services for Augusta Maine Fire Rescue among others.

The breach occurred due to an "unknown actor" accessing the company's server via an online tool that was compromised twice, once in May and again in June. The cause of the breach is a vulnerable MOVEit transfer server. EMS Management Consultants discovered the breach's impact on their servers on July 12, 2023. Previously Fayette County emergency services reported being impacted by the same breach at EMS.

The exposed data includes:

• names,
• dates of transport,
• social security numbers,
• dates of birth,
• encounter/transport numbers,
• billing codes,
• other ambulance transport-related data.

The number of affected individuals is not disclsed. Affected individuals will receive notifications via mail, and a dedicated assistance line has been set up for inquiries.