PurFoods, which positions itself as a provider of “tailored home-delivered meals,” has reported a data breach affecting over 1.2 million people.
PurFoods (doing business as Mom's Meals) filed a data breach report with the Maine Attorney General’s Office, stating that attackers acquired sensitive info such as name or other personal identifier, together with financial account number or payment card (credit or debit) number, security and access codes, and passwords or PINs for the account.
The company identified “suspicious account behavior” on February 22nd, 2023. During the investigation, experts determined that PurFoods experienced a cyberattack between January 16th, 2023, and February 22nd, 2023, “that included the encryption of certain files in its network.” It couldn’t rule out the possibility that data was taken from the company’s servers.
“Third-party specialists helped PurFoods conduct a review of the potentially involved data, which concluded on July 10th, 2023, and determined that the files at issue included personal and protected health information related to certain individuals. The information that could have been subject to unauthorized access includes: name, Social Security number, driver’s license/state identification number, financial account and/or payment card information, medical information, health information, and date of birth,” the breach notification letter reads.
The company began notifying the affected individuals on August 25th. As per official records, the security incident might have affected 1,237,681 people.
PurFoods notified law enforcement of the attack and said that it was working to implement additional safeguards and employee training to prevent similar incidents in the future.
More from Cybernews
Subscribe to our newsletter