447/67 Wednesday, December 18, 2024
ConnectOnCall, a telemedicine and after-hours emergency call service platform, has disclosed a data breach affecting the personal and medical information of over 900,000 users. The company discovered the security breach on May 12, 2024, and immediately began an investigation. It was found that an external party had gained access to ConnectOnCall’s system between February 16 and May 12, 2024, including communication data between service providers and patients. The compromised information may include names, phone numbers, dates of birth, social security numbers, medical record numbers, and health information such as symptoms, treatments, and prescriptions.
ConnectOnCall has hired cybersecurity experts, taken the system offline, and started the process of recovery, while also notifying law enforcement. Although there have been no reports of the stolen data being misused or causing harm to patients, the company advises those potentially affected to remain vigilant and report any suspicious activities related to data theft to health insurance companies or financial institutions. ConnectOnCall notified affected users on December 11, 2024, offering data monitoring services and free credit monitoring through Kroll for those whose social security numbers were compromised.
