Wisconsin medical institutions report impact on Medicare users from a MOVEit related breach
Learn More
Nearly one million Wisconsin residents had their personal information leaked during a cyberattack on the MOVEit file transfer service in 2023. The breach involved the Centers for Medicare & Medicaid Services (CMS) and Wisconsin Physicians Service Insurance Corporation (WPS), which notified 946,801 individuals that their sensitive data was compromised.
Hackers exploited a vulnerability in the MOVEit software to access files between May 27 and May 31, 2023. WPS initially believed its systems were secure after applying a patch in 2023, but a second investigation in May 2024 revealed that data had been copied by hackers before the patch was implemented.
WPS notified CMS of the breach in July 2024. After discovering the breach, WPS conducted an additional investigation with the help of an unnamed cybersecurity company and confirmed that files were accessed before the patch was applied.
Data Exposed:
- Names
- Social Security numbers
- Birthdates
- Addresses
- Medicare account numbers
- Health insurance information
CMS is sending new Medicare cards to affected individuals, advising them to destroy their old cards and inform their providers about the new Medicare number.
Victims are urged to sign up for one year of free credit monitoring services and monitor their accounts for signs of fraud.
