On January 15, 2024, CR Pharmacy Service, Inc. (d/b/a/ CarePro Health Services (“CarePro”)) was notified by the U.S. Department of Health and Human Services after it was discovered that fraudulent data was being used. We have filed a data breach notification with the Office for Civil Rights. The parties now have access to the computer network. In this notice, CarePro states that this incident may result in an unauthorized third party providing confidential information such as a consumer's name, social security number, date of birth, diagnosis and condition information, treatment information, test results, dates of service, etc. They explain that they now have access to information. Prescription information, health insurance information, driver's license number, financial account information. Once the investigation was complete, CarePro began sending data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you receive a data breach notification from CarePro Health Services, it is important to understand what is at risk and what you can do about it. A data breach attorney can learn more about how to protect yourself from being a victim of fraud and identity theft, as well as discuss your legal options after a data breach with CarePro Health Services. For more information, see our recent article on this topic. here.
What caused the CarePro Health Services data breach?
The CarePro Health Services data breach was only recently announced, and more information is expected to be released in the near future. However, documents filed by CarePro with the U.S. Department of Health and Human Services Office for Civil Rights contain important information about how the breach happened. CarePro also posted a notice on his website explaining the incident.
According to these sources, on November 16, 2023, CarePro learned that it had experienced a network outage that was impacting its employees' ability to access certain portions of the company's computer network. In response, CarePro has begun working with third-party data security experts to investigate the incident and determine what consumer data, if any, was impacted as a result. did.
Ultimately, CarePro's investigation determined that on or about November 14, 2023, an unauthorized party gained access to the company's IT network and obtained information. CarePro also determined that some of the files accessed by the unauthorized party contained sensitive consumer information.
After learning that sensitive consumer data was accessible to unauthorized parties, CarePro Health Services investigated the compromised files and determined what information was exposed and which consumers were affected. I have identified it. Compromised information varies by individual, but includes name, social security number, contact information, date of birth, diagnosis and condition information, treatment information, test results, clinic dates, prescription information, health insurance information, and driver's license. etc. may be included. Number and financial account information.
On January 15, 2024, CarePro Health Services sent out a data breach letter to everyone affected by the recent data security incident. These letters should provide victims with a list of what information in their possession was compromised.
More information about CarePro Health Services
CarePro Health Services is a healthcare services company headquartered in Cedar Rapids, Iowa. CarePro provides home care, healthy living, home health and pharmacy services through seven locations in and around Cedar Rapids, Iowa. CarePro employs more than 160 people and generates annual revenues of approximately $25 million.