Radius Global Solutions, LLC, a major player in the business services arena, recently disclosed that they suffered a significant data breach due to vulnerabilities in their MOVEit server. The details surrounding the breach were clarified in a notice, filed with the U.S. Department of Health and Human Services Office for Civil Rights on August 4, 2023.
The breach was discovered after the company learned that an unauthorized entity had gained access to its MOVEit server. This server housed critical consumer information such as names, dates of birth, Social Security numbers, patient treatment codes and treatment locations. The unauthorized access has undoubtedly put the sensitive information of these individuals at risk.
The firm exclusively used the MOVEit technology to transfer, control and automate critical IT processes in a highly secured environment. As the severity of this breach illustrates, it undoubtedly brings to light the looming vulnerabilities present even in supposedly secured systems.
In the aftermath of this incident, legal and cyber security professionals are keen to understand the full implications of such events. They are interested in learning from these incidents to fortify their defense systems and modify their legal strategies as required. Ongoing investigations are surely to shed light on the degree of this infringement and provide key learning points for the sector as a whole.
For a comprehensive understanding of the data breach, you can access the original notification here.