ARx is a health services, pharmacy, and medication delivery technology company located in Kansas. The organization works with many different healthcare companies and manages data for some of them. With so much data moving in and out of the servers at ARx Patient Solutions, it's worrying to learn the company suffered a data breach it's only just making public.
There is no specific data about how the ARx breach was possible, but we assume an attacker either broke into the company's network via a security vulnerability or through a phishing attack. Either way, the attacker got into the company's files and gathered personal and health information for a large number of individuals.
The ARx breach occurred in October 2022, but it was only just reported at the end of June. On June 30, 2023, more than 40,000 patients were sent notices informing them their information may have been exposed in the 2022 data breach. An official filing was put in with the Maine Attorney General on July 3, 2023, as well.
Over 40,000 patients could be impacted by this data breach. Each of these individuals could be at risk for an identity theft attack and for phishing attacks. These potential issues can lead to costly problems in the future, and they should be real concerns for anyone that receives a notice. The company is offering complimentary credit monitoring and identity theft protection services, and you should leverage them if you get a notice about the breach.
We have no way of knowing how many ARx Patient Solutions files were accessed, copied, and misused in this data breach. We only know that tens of thousands of people were put at risk by the breach.