Elgon Information Systems
Your Personal Info Could Be
Exposed Online After
This Hospital Breach
Breach Description
Elgon Information Systems, Inc., a Massachusetts-based technology company, experienced a data breach that was first identified on March 31, 2023. The breach involved unauthorized access to a limited set of data, which may have included protected health information (PHI). The data was in the process of being migrated to more secure servers when the unauthorized access occurred. Immediate steps were taken to prevent further unauthorized access, and additional security measures were implemented. An extensive investigation, aided by third-party computer forensic specialists, was launched to determine the nature and scope of the event[1][7].
The potentially compromised information could include names, addresses, medical identification numbers, birth dates, and diagnosis codes. However, there was no evidence that the data was downloaded or misused. Elgon Information Systems does not store social security numbers or credit card information within its system. The company has reviewed and enhanced its security processes and policies in response to the incident[1].
Elgon Information Systems, doing business under the name HomecareGPS, reported the breach to the U.S. Department of Health and Human Services Office for Civil Rights (HHS-OCR) on June 2, 2023. The breach notification indicated that an unauthorized party gained access to consumers’ PHI. Data breach notification letters were sent to the 31,248 individuals affected by the breach[4].
In response to the breach, Elgon Information Systems offered identity theft protection services through IDX, a ZeroFox Company, to potentially impacted individuals. These services include 24 months of credit and CyberScan monitoring, a $1,000,000 insurance reimbursement policy, and fully managed ID theft recovery services[7].
Elgon Information Systems, also known as HomecareGPS, is a technology company that develops software to help home healthcare agencies ensure compliance and improve efficiencies. The company employs more than 25 people and generates approximately $5 million in annual revenue[4].
The breach at Elgon Information Systems is part of a larger trend of healthcare data breaches, with June 2023 seeing a total of 5,015,083 breached records across various incidents. Hacking incidents were the most common cause of these breaches, accounting for over 77% of the month’s data breaches and more than 96% of the month’s breached records[2][8].
Citations:
- https://www.prnewswire.com/news-releases/elgon-inc-provides-notice-of-data-incident-301887792.html
- https://www.hipaajournal.com/june-2023-healthcare-data-breach-report/
- http://www.elgontechnologies.com/Cyber-Security.html
- https://www.jdsupra.com/legalnews/homecaregps-announces-data-breach-1741146/
- https://original.newsbreak.com/@openclassactions-com-1602283/3072801821581-have-you-received-a-data-breach-notice-you-may-be-owed-compensation-for-your-data-being-compromised
- https://www.hackmageddon.com/2023/07/19/1-15-june-2023-cyber-attacks-timeline/
- https://www.mass.gov/doc/assigned-data-breach-number-30121-elgon-inc/download
- https://www.calhipaa.com/healthcare-data-breach-report-for-june-2023/
- https://www.reddit.com/r/JoinClassAction/comments/145lknt/data_breach_elgon_information_systems/
- https://www.v2verify.com/2023-data-breaches
- https://www.myinjuryattorney.com/homecaregps-data-breach-investigation/
- https://www.reddit.com/r/DataBreachAlerts/
- https://hacknotice.com/2023/06/02/elgon-information-systems/
- https://securityforum.pro/en/practical-informations/
- https://openclassactions.com/investigations/elgon-information-systems-data-breach.php
- https://www.mass.gov/lists/data-breach-notification-letters-july-2023