Indiana University Health's patient data compromised in MOVEit Transfer breach

Indiana University Health suffered a major data breach after one of its service providers fell victim to the exploitation of the MOVEit Transfer web application by the notorious Clop ransomware gang.

In a recent notice of data breach on its website, Indiana University Health (IU Health) said that one of its service providers, TMG Health, Inc. (TMG), who helped IU Health in processing claims, used the MOVEit Transfer web application to send and receive files securely.

IU Health said that on June 22, TMG notified it about the security incident that had a cascading effect on the healthcare provider’s services, forcing the latter to launch an investigation to understand the scope of the security incident. The investigation concluded that between May 30, 2023, and June 2, 2023, an unauthorised party had downloaded certain data from TMG’s internal network.

The compromised data included IU Health Plans member names, member identification numbers, effective dates of plans, and in limited circumstances, banking account and routing numbers. The healthcare provider did not state how many individuals were affected by the incident but said it has started notifying all impacted individuals.

“IU Health Plans began notifying affected members on August 4, 2023. All IU Health Plans members impacted are being provided free credit monitoring by TMG. Additionally, TMG deployed the requisite security measures to ensure its systems are updated to block these activities from occurring in the future,” the notice reads.

Indiana University Health is among more than 600 organisations worldwide that have suffered significant data breaches after the Clop ransomware gang exploited Progress Software’s MOVEit Transfer web application. 

 

According to German cybersecurity research firm KonBriefing, as of August 8, at least 601 organisations have come forward about security incidents resulting from the exploitation of the software and almost 39.9 million individuals have been impacted by the same.

KonBriefing’s research also revealed that while the security incident has affected organisations around the world, at least 443 American organisations have been impacted so far.