BRSI discovered the cyberattack on April 30 and launched an investigation, which found that an unauthorized user accessed BRSI’s systems using employee credentials and deployed malware. The hacker had access to certain BRSI customer files containing personal information between April 20-30.
Personal information impacted by the malware attack includes names, dates of birth, policy identification numbers, provider names and, for a small number of individuals, Social Security numbers.
BRSI began notifying affected individuals June 2 and reported the incident on June 26 to HHS as affecting 274,837 individuals.
More articles on cybersecurity:
Microsoft sues to halt COVID-19 hackers
California health system reports 4 employee emails hacked since April
Providence business associate coding error exposes info of 49,511 health plan members
