Philips Respironics has filed a notice with the authorities about a hacking incident on its network server. It’s still not clear what data was affected.
According to a filing to the US Department of Health and Human Services Office for Civil Rights, a medical supply company owned by Philips suffered a data breach that affected 1125 individuals.
The breach was described as a “hacking / IT incident” involving a network server. So far, official information on the type of data that’s been compromised is limited.
According to the HIPPA journal, the current data breach filing could be related to a data breach on May 31st, 2023, when a zero-day vulnerability in MOVEit Transfer software resulted in thousands of companies being affected worldwide.
Rotech Healthcare, a Phillips Respitorics business partner, received a notice from the company on December 26th, 2023, explaining that some patients who purchased Philips Respironics sleep and respiratory devices from Rotech might be affected by the breach.
In the incident notice, Rotech stated that the stolen data might have comprised individuals' names, addresses, dates of birth, emails, phone numbers, health insurance policy numbers, patient IDs, facility IDs, setup dates, device serial numbers, and modem serial numbers.
Another Phillips partner, Forward Healthcare LLC, also reported that Phillips contacted them on December 20th, 2023, regarding unauthorized access to their software solutions. According to a notice released by Forward Healthcare, the breach affected some patients’ personal health information.
Headquartered in Murrysville, Pennsylvania, Philips Respironics produces devices for the diagnosis and treatment of sleep apnea, oxygen concentrators, infant apnea monitors, asthma treatment solutions, and hospital ventilators.
Cybernews has contacted Phillips for a comment but a response is yet to be received.
Your email address will not be published. Required fields are markedmarked