Cyberattack on Transformative Healthcare and Fallon Ambulance Service hits 911K people

The ransomware attack on Transformative Healthcare and its now-defunct subsidiary, Fallon Ambulance Service, has led to a substantial data breach, impacting around 911,757 individuals nationwide. Fallon Ambulance Service, a medical transport company serving the greater Boston area, had ceased operations in December 2022 but retained a data storage archive to comply with legal obligations. This archive was the target of the breach.

The attack dates back to February 17, 2023, when unauthorized access began, and it continued until April 22, 2023 when it was detected and mitigated. The ALPHV ransomware gang claimed responsibility for this attack, having exported a terabyte of data, including detailed medical and paramedic reports. This claim came before law enforcement agencies seized the domains used by the gang.

The unauthorized access led to the acquisition of sensitive files containing personal information, including:

• names,
• addresses,
• Social Security numbers,
• medical information (including COVID-19 testing and vaccination details),
• employment information,
• driver’s license numbers,
• non-driver identification card numbers.

Transformative Healthcare took action upon discovering the breach and initiated an investigation with the help of third-party cybersecurity experts. They sent out data breach notification letters on December 27, 2023, informing affected individuals about the nature of the compromised information. Additionally, they offer free identity theft protection services to those impacted.