OptumRx reports MOVEit related data breach

OptumRx, a prominent pharmacy organization, has reported a data breach impacting its patients' personal information. This breach came to light as a result of an incident involving Welltok, a vendor providing communication services for OptumRx.

The breach itself originated from the MOVEit data breach, in which Welltok was a target. Welltok became aware of its involvement in this breach around August, and subsequent investigations led OptumRx to conclude in November that the breach had indeed compromised the personal information of some of its patients.

The specific data exposed in this breach includes sensitive information such as:

• patient names,
• dates of birth,
• genders,
• phone numbers,
• mailing and email addresses,
• unique patient identifiers,
• even details regarding their prescriptions.

The number of affected individuals is not disclosed.

In response to this incident, Welltok is taking steps to notify those impacted. Beginning on December 22, affected individuals will receive notifications via mail. Additionally, Welltok, in coordination with OptumRx, is offering complimentary credit monitoring and identity protection services for a duration of two years, provided through Experian.