AllCare Plus Pharmacy, Inc. Notified Patients of Recent Data Breach Leaking Their SSNs and PHI

Console and Associates, P.C.
Contact

On March 16, 2023, AllCare Plus Pharmacy, Inc. filed a notice of data breach with the Texas Attorney General after learning that confidential patient information stored on the company’s computer system was compromised following a cyberattack. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ names, addresses, Social Security numbers, driver’s license numbers, financial account information, credit or debit card numbers, insurance information and protected health information. After confirming that consumer data was leaked, AllCare began sending out data breach notification letters to all individuals who were impacted by the recent data security incident.

If you received a data breach notification from AllCare Plus Pharmacy, Inc., it is essential you understand what is at risk and what you can do about it. As we’ve reported in previous articles, hackers frequently target healthcare companies in hopes of obtaining patients’ sensitive information that can later be used to commit identity theft and other frauds. To learn more about how to protect yourself from becoming a victim of fraud or identity theft and what your legal options are in the wake of the AllCare Plus Pharmacy data breach, please see our recent piece on the topic here.

What We Know So Far About the AllCare Plus Pharmacy Breach

The available information regarding the AllCare Plus Pharmacy breach comes from the company’s filing with the Texas Attorney General. According to this source, in June 2022, AllCare Plus Pharmacy learned that one of the company’s employees fell victim to an email phishing attack that had been sent to various Allcare employees. In response, AllCare launched an investigation into the incident in hopes of learning more about the breach and what, if any, patient data was exposed.

The AllCare Plus Pharmacy investigation confirmed that the unauthorized actor was able to access certain files through the employee’s email account. It was later determined that some of these files contained confidential patient information.

Upon discovering that sensitive patient data was made available to an unauthorized party, AllCare Plus Pharmacy began to review the affected files to determine what information was compromised and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, address, Social Security number, driver’s license number, financial account information, credit or debit card number, insurance information and protected health information.

On March 16, 2023, AllCare Plus Pharmacy sent out data breach letters to all individuals whose information was compromised as a result of the recent data security incident.

More Information About AllCare Plus Pharmacy, Inc.

AllCare Plus Pharmacy, Inc. is a specialty pharmacy located in Northborough, MA. The company provides a range of patient support services, specializing in complex medication management. AllCare Plus Pharmacy employs more than 296 people and generates approximately $20 million in annual revenue. AllCare Plus Pharmacy, Inc. is owned by the much larger healthcare software and services company IQVIA.

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Console and Associates, P.C. | Attorney Advertising

Written by:

Console and Associates, P.C.
Contact
more
less

Console and Associates, P.C. on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide