Contact Contact Us

Debt Collection Agency Breach Affects 200,000 Patients

The online payment portal of a debt collection agency in the US that serves the medical sector was breached, affecting more than 200,000 patients and hundreds of banks. The portal is believed to be compromised as early as September 2018 and the hackers have been exfiltrating payment card details, along with the victim's date-of-birth and social security number. The breach was discovered only after the stolen data were found to be on sale in the darknet. The debt collection agency has not notified affected customers or filed a breach notification.

[1] American Medical Collection Agency Breach Impacted 200,000 patients – Gemini Advisory

Ensign InfoSecurity Singapore
30A Kallang Place
Singapore 339213

Tel: +65 6788 2882
Fax: +65 6788 3883