- Episource suffered a cyber attack at the end of January 2025
- Confidential data were taken over 5.4 million people
- The company is now notifying affected people
American Healthcare Data Giant Episource has begun to notify its clients about a data violation of February 2025 in which its confidential information was stolen.
Episource is a medical care data and technology that helps health plans to administer risk adjustment, quality measurement and clinical data through analysis, coding and technology analysis.
On February 6, 2025, the company saw a threat actor violating its defenses and accessing confidential files that had stored on its devices. After closing the IT network, bringing third -party forensic experts and notifying the police, the company determined that the attackers took “copies of some data” between January 27 and February 6, 2025.
Personal identification data
The data included health plans/policies, insurance companies, members of members/groups and identification numbers of Payor of Government of Medicaid-Medicare.
It also included health data such as medical, medical, diagnostic records, medicines, test results, images, care and treatment, as well as other personal data, such as birth dates or social security numbers (SSN).
Meanwhile, in a separate report, presented with the Office of Civil Rights of the Department of Health and Human Services of the United States, Episource confirmed that exactly 5,418,866 people were affected by the attack.
The previous reports also declared that the company began notifying them on April 23, 2025, although these were unconfirmed reports.
Cybercriminals are often aimed at medical care organizations for their data, since you can abuse phishing, identity theft and other forms of scams.
Crooks can use the data to create custom and convincing emails, which can fool the victims to download malware or share login credentials. That is why Episource now urges people impacted to stay attentive and be careful with the possible impersonation and scam attempts.
Through Techcrunch
