PharMerica Corporation, a provider of pharmacy services across the U.S., disclosed a significant data breach in March. The breach occurred when an unknown third party accessed PharMerica’s computer systems between March 12-13, 2023. Approximately 5.8 million individuals were impacted by this breach.
Unauthorized actors gained access to PharMerica’s computer systems during the specified timeframe. Personal information was potentially obtained as part of the incident.
The exact weakness exploitation methods remain undisclosed, but common techniques include:
- Exploiting System Weaknesses: Targeting vulnerabilities in PharMerica’s systems.
- Social Engineering: Manipulating employees or third parties to gain unauthorized access.
PharMerica identified the breach during an internal investigation prompted by suspicious activity. Immediate response efforts led to the discovery of unauthorized access.
Potentially impacted personal information includes:
- Name
- Address
- Date of birth
- Social Security number
- Medications
- Health insurance information
PharMerica promptly notified affected individuals. Complimentary identity protection and credit monitoring services were arranged.