Healthcare revenue cycle management services provider Designed Receivable Solutions (DRS) has informed authorities that the number of individuals impacted by a recent data breach has increased to 585,000.
The California-based company, which specializes in patient-centered and client-focused revenue cycle services, detected an intrusion in its network on January 22, 2024.
An investigation revealed that hackers had accessed and stolen files from its systems, including protected health information and personally identifiable information.
Compromised information includes names, addresses, dates of birth, Social Security numbers, health insurance data, and medical information.
The company’s data breach notification includes a list of over a dozen healthcare organizations whose customers are impacted by the incident.
DRS initially said the breach impacted less than 130,000 individuals. In April it informed the Maine Attorney General that the number increased to 498,000. The Maine AG on Thursday published an updated notification which shows that the number of affected people has increased to 585,000.
Impacted individuals are being notified and offered identity protection services at no cost for a period of 12 months.
It’s unclear if a ransomware group was behind the attack on Designed Receivable Solutions. No known cybercrime gang appears to have taken credit for the attack.
Related: 2.4 Million Impacted by WebTPA Data Breach
Related: Push Notification Fatigue Leads to LA County Health Department Data Breach