Apria Data Breach affects 2 million customers
Share this:
Apria Healthcare was affected by a data breach dated back to April 2019, during which hackers infiltrated their computer systems and accessed personal health information (PHI) over a series of months
As a result customers’ names and Social Security numbers, as well as their personal, medical, health insurance, and financial information, were potentially accessed.
Apria was alerted about unauthorized access to select systems on September 1, 2021, leading to immediate security measures and an investigation. The probe revealed that the breach took place sporadically between April 5, 2019, and October 10, 2021.
The initial breach happened between April 5 and May 7, 2019, per the notification letter provided to affected people and submitted to the Maine Attorney General’s Office. The corporation claims that between August 27 and October 10, 2021, the same unauthorized individual accessed its networks.
Despite this, victims were only officially notified nearly four years after the first breach occurrence.
Apria reported that there is no evidence of funds removed and is not aware of the misuse of personal information related to this incident. A small number of emails and files were confirmed to have been accessed, but there is no proof that any data was taken from any system.
Apria takes the safeguarding of personal information seriously and regrets any concern this may cause. We have implemented additional security measures upon the guidance and recommendation of our forensic investigators to help prevent the reoccurrence of a similar breach and to further protect the privacy of our patients and employees.
