U.S. Drug Mart Files pharmacy reports data breach exposing customer SSNs
U.S. Drug Mart, Inc., a full-service pharmacy in Texas reported that they had detected unauthorized access to their data systems, which contained sensitive personal information. Following the discovery of the breach, U.S. Drug Mart undertook an extensive investigation to understand the scope and impact of the incident.
The investigation confirmed that an unknown party had gained access to customer information, including but not limited to:
This investigation led to the identification of affected individuals and the preparation of notification letters to inform them about the specific details of the information breached.
The breach's root cause is not disclosed in the initial report. It is uncertain whether the data was compromised through a direct cyberattack on U.S. Drug Mart or via a third party, possibly one of the company’s vendor
The extent of the breach indicates that the impact is significant, with at least 12,940 impacted individuals and overall number may be larger but is not disclosed.