NASCO, a United States healthcare benefits administration company, has suffered a major cyber breach that has exposed the personal details of 800,000 users. The company has responded by deactivating the affected server and offering two years of identity monitoring services to affected users. The breach was orchestrated through a zero-day exploit, taking advantage of a vulnerability in NASCO’s MOVEit Transfer system, which is linked to threat actors in Russia.
Hacker group ALPHV’s attack on Change Healthcare has led to payment processing outages and disruptions to the operations of thousands of healthcare providers nationwide. According