According to sources, Welltok (a Medical organization in Colorado) was hit with a cyber attack. It was first reported on 2023-11-20.

2023-11-20
Hackers accessed sensitive health data of more than 8 million Welltok patients

“Hackers accessed the personal data of more than 8 million people by exploiting a security vulnerability in a file transfer tool used by Welltok, the healthcare platform owned by Virgin Pulse. “

“Welltok, a Denver-based patient engagement company that works with healthcare plans to provide communications to subscribers about their healthcare, first confirmed in a notice published on its website in in late-October that it had suffered a data breach after hackers compromised its MOVEit Transfer server, a system that allows organizations to move large sets of often-sensitive data over the internet. “

“TechCrunch found that Welltok’s data breach notice includes “noindex” code, which tells search engines to ignore the web page, effectively making it more difficult for affected customers to find the statement by searching for it. It’s not clear for what reason Welltok hid its data breach notification from search engines. “

“As confirmed by Welltok, the compromised data includes individuals’ names, dates of birth, addresses, Social Security numbers, health information, Medicare and Medicaid ID numbers and health insurance information. “

Cyber-Protecting Our Nation’s Critical Infrastructure

At SecuLore, our mission is to cyber-protect our nation’s critical infrastructure. Led by experts in 9-1-1 technology, cyberwarfare, and ethical hacking, our team provides the technology, expertise, and training needed to defend customers from increasingly sophisticated cyber threats.