Pharm-Pacc Corporation

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

Pharm-Pacc Corporation, a healthcare services company based in Coral Gables, Florida, experienced a significant data breach that was first detected on March 24, 2023, when suspicious activity was observed within its computer network. The company took immediate steps to secure its network and initiated an investigation with the help of an external cybersecurity firm. This investigation confirmed on May 23, 2023, that an unauthorized party had gained access to Pharm-Pacc’s digital environment, leading to the exposure of sensitive consumer information.

The data breach involved the unauthorized access to a wide range of personal and medical information of consumers. The compromised data includes names, Social Security numbers, addresses, medical information such as medical record numbers, dates of service, and more. In response to the breach, Pharm-Pacc filed a notice with the Attorney General of Montana on September 14, 2023, and began sending out data breach notification letters to affected individuals on September 14, 2023, advising them of the breach and the steps they can take to protect themselves from potential fraud or identity theft.

Pharm-Pacc Corporation is a provider of managed recovery services specializing in medication claims processing and healthcare administration for uninsured patients. The company partners with healthcare facilities across the United States to maximize the recovery of patient assistance funds offered by pharmaceutical manufacturers. Founded in 1984, Pharm-Pacc employs more than 16 people and generates approximately $5 million in annual revenue[1][5].

Victims of the data breach are advised to carefully review the breach notification, enroll in free credit monitoring services provided by Pharm-Pacc, change passwords and security questions for online accounts, regularly review account statements and credit reports for signs of unauthorized activity, and consider placing a fraud alert on their credit files[5].

Citations:

  1. https://www.jdsupra.com/legalnews/pharm-pacc-announces-files-notice-of-4483159/
  2. https://www.kingsoopers.com
  3. https://www.myinjuryattorney.com/pharm-pacc-data-breach-investigation/
  4. https://www.lvhn.org
  5. https://www.turkestrauss.com/2023/09/18/pharm-pacc-data-breach-investigation/
  6. https://www.tucsonfcu.com
  7. https://abingtonlaw.com/Pharm-Pacc-Data-Breach-class-action-lawsuit.html
  8. https://careers.mskcc.org/search-jobs/
  9. https://www.hipaajournal.com/snatch-ransomware-group-behind-mount-desert-island-hospital-cyberattack/
  10. https://careers.cshs.org
  11. https://www.linkedin.com/posts/joshua-mckeever-b80684214_breach-report-activity-7111001245099720704-kpAz?trk=public_profile_share_view
  12. https://msdh.ms.gov
  13. https://www.hipaaguidelines101.com/47-increase-in-ransomware-attacks-and-data-breaches-reported-by-mount-desert-island-hospital-and-pharm-pacc-corporation/
  14. https://www.kroger.com/i/community/community-rewards
  15. https://dojmt.gov/consumer/databreach/
  16. https://www.triwest.com/en/provider/
Breach Submission Date Sep 12, 2023
Converted Entity Name Pharm-Pacc Corporation
Converted Entity Type Business Associate
State FL
Individuals Affected 3,749
Breach Type Hacking/IT Incident

Breach Information Location Network Server

Business Associate Present Yes