EpiSource LLC reports Data Breach via Unauthorized Access to AWS resources

EpiSource LLC, a software company headquartered in Gardena, California, reports a data breach incident within its Amazon Web Services (AWS) environment.

The breach was initially detected on February 20, 2023, when EpiSource identified suspicious activity within its AWS environment. Immediate actions were taken to contain the incident and prevent further unauthorized access.

The unauthorized party obtained access to a range of confidential consumer information, including

• consumers' names
• dates of birth, addresses,
• phone numbers,
• medical record numbers,
• health plan ID numbers,
• provider information,
• diagnoses,
• medications.

EpiSource confirmed that Social Security numbers and financial account information were not impacted by the breach. No details are available as to the number of impacted individuals, nor the precise nature of the unauthorized AWS access.

To address the incident, EpiSource sent out data breach notification letters to all individuals whose information was compromise