Data Collected by the US Justice Department Exposed in Consultant's Breach

DOJ-Collected Information Exposed In Data Breach Affecting 340,000
Information Collected

An anonymous reader shared this report from Security Week:

Economic analysis and litigation support firm Greylock McKinnon Associates, Inc. (GMA) is notifying over 340,000 individuals that their personal and medical information was compromised in a year-old data breach. The incident was detected on May 30, 2023, but it took the firm roughly eight months to investigate and determine what type of information was compromised and to identify the impacted individuals.


According to GMA's notification letter to the affected individuals, a copy of which was submitted to the Maine Attorney General's Office, both personal and Medicare information was compromised in the data breach... 'This information may have included your name, date of birth, address, Medicare Health Insurance Claim Number (which contains a Social Security number associated with a member) and some medical information and/or health insurance information,' the notification letter reads.

The compromised data, GMA says, was obtained by the US Department of Justice 'as part of a civil litigation matter'. More than 340,000 individuals were affected by the data breach, the company told the Maine Attorney General's Office. The impacted individuals, however, are 'not the subject of this investigation or the associated litigation matters', the company tells the affected individuals.

Read more of this story at Slashdot.