April 9, 2024 at 07:54AM
Economic analysis and litigation support firm GMA notified 340,000 individuals of a data breach compromising personal and Medicare information. The incident, detected in May 2023, took eight months to investigate. The compromised data, obtained by the US Department of Justice, includes personal details and medical information. GMA is providing credit monitoring and fraud assistance to those affected.
From the meeting notes provided, it’s evident that economic analysis and litigation support firm, Greylock McKinnon Associates, Inc. (GMA), is notifying over 340,000 individuals about a year-old data breach compromising personal and medical information.
Key takeaways include:
1. The data breach was detected on May 30, 2023, and it took around eight months to investigate and determine the compromised information and impacted individuals.
2. The compromised data included personal and Medicare information such as names, dates of birth, addresses, Medicare Health Insurance Claim Numbers (which contain associated Social Security numbers), and some medical and health insurance information.
3. The compromised data was obtained by the US Department of Justice as part of a civil litigation matter, impacting over 340,000 individuals.
4. The impacted individuals are not the subject of the investigation or associated litigation.
5. GMA notified law enforcement, consulted with third-party specialists, and deleted DOJ data from its systems.
6. Complimentary credit monitoring services and proactive fraud assistance are being offered to those affected.
Additionally, it’s worth noting that GMA caters to both domestic and international clients, including Fortune 100 companies, small businesses, law firms, government agencies, and regulatory commissions. This context provides insight into the firm’s clientele and scope of operations.
Furthermore, the reference to related data breaches impacting other entities such as US Cancer Center, SurveyLama, and Prudential Financial helps contextualize the prevalence and scope of data breaches across various organizations. Tailoring security and privacy measures in light of these incidents might be worthwhile for future discussions or action items.