Prime Healthcare reports MOVEit related data breach

Prime Healthcare, headquartered in Ontario, California, reports that CBIZ KA, a third party vendor for Prime has identified a security breach involving the MOVEit Transfer software, a tool used for secure data transfer.

Despite Prime Healthcare systems being unaffected, patient data transferred by CBIZ KA was compromised. The compromised data included:

• names,
• dates of birth,
• addresses,
• medical record numbers,
• Social Security Numbers,
• admission and discharge dates.

Prime Healthcare and CBIZ KA have not disclosed the number of affected individuals.

CBIZ KA has since patched the vulnerability and reviewed their vendor protocols to prevent future incidents. They are offering free credit monitoring and identity protection services through Kroll for those whose Social Security numbers were involved.