More than a quarter-million people were recently affected by a ZOLL Medical data breach that exposed patient names, addresses, dates of birth, limited medical information and some Social Security numbers, the company announced.
ZOLL reported the breach to HHS March 18 after learning of the incident Jan. 24, according to a press release. The company said some data from ZOLL emails—which are archived by a third-party service provider—were exposed during a server migration between Nov. 8, 2018, and Dec. 28, 2018.
“At this point, ZOLL is not aware of any fraud or identity theft to any individual as a result of this exposure,” the release read. “The vendor has since confirmed that all information has now been secured.”
Information that could have been exposed in the breach included patient names, addresses, dates of birth and a small percentage of Social Security numbers, ZOLL said, as well as some medical information.
The company is offering free credit and yearlong identity monitoring services to patients affected by the breach and said it’s taking steps to review its process for managing third-party vendors. Law enforcement and federal agencies have been notified of the incident for further investigation.